Patch Tuesday — May 2026
2026-05-12 · 1770 CVEs
CVEs published or modified the week of 2026-05-12, partitioned by vendor.
Microsoft (180 CVEs)
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-42898 | Critical | 9.9 | — | 2026-05-12 | Improper control of generation of code ('code injection') in Microsoft Dynamics 365 (on-premises) allows an authorized attacker to execute code over a network. |
CVE-2026-42823 | Critical | 9.9 | — | 2026-05-12 | Improper access control in Azure Logic Apps allows an authorized attacker to elevate privileges over a network. |
CVE-2026-8398 | Critical | 9.8 | KEV | 2026-05-15 | A supply chain attack compromised the official installation packages of DAEMON Tools Lite (Windows versions 12.5.0.2421 through 12.5.0.2434), distributed from the legitimate website daemon-tools.cc between approximately April 8, 2026, and… |
CVE-2026-41096 | Critical | 9.8 | — | 2026-05-12 | Heap-based buffer overflow in Microsoft Windows DNS allows an unauthorized attacker to execute code over a network. |
CVE-2026-41089 | Critical | 9.8 | — | 2026-05-12 | Stack-based buffer overflow in Windows Netlogon allows an unauthorized attacker to execute code over a network. |
CVE-2026-8511 | Critical | 9.6 | — | 2026-05-14 | Use after free in UI in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. |
CVE-2026-41615 | Critical | 9.6 | — | 2026-05-14 | Exposure of sensitive information to an unauthorized actor in Microsoft Authenticator allows an unauthorized attacker to disclose information over a network. |
CVE-2026-40402 | Critical | 9.3 | — | 2026-05-12 | Use after free in Windows Hyper-V allows an unauthorized attacker to elevate privileges locally. |
CVE-2026-40379 | Critical | 9.3 | — | 2026-05-12 | Exposure of sensitive information to an unauthorized actor in Azure Entra ID allows an unauthorized attacker to perform spoofing over a network. |
CVE-2026-42833 | Critical | 9.1 | — | 2026-05-12 | Improper control of generation of code ('code injection') in Microsoft Dynamics 365 (on-premises) allows an authorized attacker to execute code over a network. |
CVE-2026-41103 | Critical | 9.1 | — | 2026-05-12 | Incorrect implementation of authentication algorithm in Microsoft SSO Plugin for Jira & Confluence allows an unauthorized attacker to elevate privileges over a network. |
CVE-2026-33117 | Critical | 9.1 | — | 2026-05-12 | The Java Key Vault Keys library in the Azure SDK for Java contains an issue in the local cryptographic verification path where authentication tag comparison was implemented incorrectly. |
CVE-2026-8555 | High | 8.8 | — | 2026-05-14 | Use after free in GTK in Google Chrome on Windows prior to 148.0.7778.168 allowed a remote attacker to execute arbitrary code via a crafted HTML page. |
CVE-2026-8544 | High | 8.8 | — | 2026-05-14 | Use after free in Media in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. |
CVE-2026-8531 | High | 8.8 | — | 2026-05-14 | Heap buffer overflow in WebML in Google Chrome on Windows prior to 148.0.7778.168 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. |
CVE-2026-8529 | High | 8.8 | — | 2026-05-14 | Heap buffer overflow in Codecs in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted video file. |
CVE-2026-8527 | High | 8.8 | — | 2026-05-14 | Insufficient validation of untrusted input in Downloads in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to execute arbitrary code via a crafted HTML page. |
CVE-2026-8526 | High | 8.8 | — | 2026-05-14 | Out of bounds write in WebRTC in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. |
CVE-2026-8524 | High | 8.8 | — | 2026-05-14 | Out of bounds write in WebAudio in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. |
CVE-2026-8519 | High | 8.8 | — | 2026-05-14 | Integer overflow in ANGLE in Google Chrome on Windows prior to 148.0.7778.168 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. |
CVE-2026-8518 | High | 8.8 | — | 2026-05-14 | Use after free in Blink in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. |
CVE-2026-8509 | High | 8.8 | — | 2026-05-14 | Heap buffer overflow in WebML in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. |
CVE-2026-41613 | High | 8.8 | — | 2026-05-12 | Session fixation in Visual Studio Code allows an unauthorized attacker to elevate privileges over a network. |
CVE-2026-41109 | High | 8.8 | — | 2026-05-12 | Improper neutralization of special elements in output used by a downstream component ('injection') in GitHub Copilot and Visual Studio allows an unauthorized attacker to bypass a security feature over a network. |
CVE-2026-41094 | High | 8.8 | — | 2026-05-12 | Improper control of generation of code ('code injection') in Microsoft Data Formulator allows an unauthorized attacker to execute code over a network. |
CVE-2026-41086 | High | 8.8 | — | 2026-05-12 | Improper access control in Windows Admin Center allows an authorized attacker to elevate privileges over a network. |
CVE-2026-40420 | High | 8.8 | — | 2026-05-12 | Use after free in Microsoft Office allows an authorized attacker to elevate privileges locally. |
CVE-2026-40403 | High | 8.8 | — | 2026-05-12 | Heap-based buffer overflow in Windows Win32K - GRFX allows an authorized attacker to execute code locally. |
CVE-2026-40370 | High | 8.8 | — | 2026-05-12 | External control of file name or path in SQL Server allows an authorized attacker to execute code over a network. |
CVE-2026-40365 | High | 8.8 | — | 2026-05-12 | Deserialization of untrusted data in Microsoft Office SharePoint allows an authorized attacker to execute code over a network. |
CVE-2026-40357 | High | 8.8 | — | 2026-05-12 | Deserialization of untrusted data in Microsoft Office SharePoint allows an authorized attacker to execute code over a network. |
CVE-2026-35439 | High | 8.8 | — | 2026-05-12 | Deserialization of untrusted data in Microsoft Office SharePoint allows an authorized attacker to execute code over a network. |
CVE-2026-35436 | High | 8.8 | — | 2026-05-12 | Use after free in Microsoft Office allows an authorized attacker to elevate privileges locally. |
CVE-2026-34329 | High | 8.8 | — | 2026-05-12 | Heap-based buffer overflow in Windows Message Queuing allows an unauthorized attacker to execute code over an adjacent network. |
CVE-2026-33112 | High | 8.8 | — | 2026-05-12 | Deserialization of untrusted data in Microsoft Office SharePoint allows an authorized attacker to execute code over a network. |
CVE-2026-33110 | High | 8.8 | — | 2026-05-12 | Deserialization of untrusted data in Microsoft Office SharePoint allows an authorized attacker to execute code over a network. |
CVE-2026-40367 | High | 8.4 | — | 2026-05-12 | Access of resource using incompatible type ('type confusion') in Microsoft Office Word allows an unauthorized attacker to execute code locally. |
CVE-2026-40366 | High | 8.4 | — | 2026-05-12 | Access of resource using incompatible type ('type confusion') in Microsoft Office Word allows an unauthorized attacker to execute code locally. |
CVE-2026-40364 | High | 8.4 | — | 2026-05-12 | Access of resource using incompatible type ('type confusion') in Microsoft Office Word allows an unauthorized attacker to execute code locally. |
CVE-2026-40363 | High | 8.4 | — | 2026-05-12 | Heap-based buffer overflow in Microsoft Office allows an unauthorized attacker to execute code locally. |
CVE-2026-40361 | High | 8.4 | — | 2026-05-12 | Use after free in Microsoft Office allows an unauthorized attacker to execute code locally. |
CVE-2026-40358 | High | 8.4 | — | 2026-05-12 | Heap-based buffer overflow in Microsoft Office allows an unauthorized attacker to execute code locally. |
CVE-2026-8574 | High | 8.3 | — | 2026-05-14 | Use after free in Core in Google Chrome on Windows prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. |
CVE-2026-8573 | High | 8.3 | — | 2026-05-14 | Integer overflow in Codecs in Google Chrome on Windows prior to 148.0.7778.168 allowed a remote attacker to potentially perform a sandbox escape via a crafted video file. |
CVE-2026-8542 | High | 8.3 | — | 2026-05-14 | Use after free in Core in Google Chrome on Windows prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. |
CVE-2026-8530 | High | 8.3 | — | 2026-05-14 | Use after free in Network in Google Chrome on Windows prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. |
CVE-2026-8523 | High | 8.3 | — | 2026-05-14 | Use after free in Mojo in Google Chrome prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. |
CVE-2026-8520 | High | 8.3 | — | 2026-05-14 | Race in Payments in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. |
CVE-2026-8515 | High | 8.3 | — | 2026-05-14 | Use after free in HID in Google Chrome prior to 148.0.7778.168 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially perform a sandbox escape via a crafted HTML page. |
CVE-2026-8514 | High | 8.3 | — | 2026-05-14 | Use after free in Aura in Google Chrome prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. |
CVE-2026-8512 | High | 8.3 | — | 2026-05-14 | Use after free in FileSystem in Google Chrome prior to 148.0.7778.168 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially perform a sandbox escape via a crafted HTML page. |
CVE-2026-35438 | High | 8.3 | — | 2026-05-12 | Missing authorization in Windows Admin Center allows an authorized attacker to elevate privileges over a network. |
CVE-2026-33833 | High | 8.2 | — | 2026-05-12 | Improper neutralization of special elements in output used by a downstream component ('injection') in Azure Machine Learning allows an unauthorized attacker to perform spoofing over a network. |
CVE-2026-42897 | High | 8.1 | KEV | 2026-05-14 | Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft Exchange Server allows an unauthorized attacker to perform spoofing over a network. |
CVE-2026-40415 | High | 8.1 | — | 2026-05-12 | Use after free in Windows TCP/IP allows an unauthorized attacker to execute code over a network. |
CVE-2026-40368 | High | 8.0 | — | 2026-05-12 | Deserialization of untrusted data in Microsoft Office SharePoint allows an authorized attacker to execute code over a network. |
CVE-2026-34332 | High | 8.0 | — | 2026-05-12 | Use after free in Windows Kernel-Mode Drivers allows an authorized attacker to execute code over a network. |
CVE-2026-44470 | High | 7.8 | — | 2026-05-13 | The Claude Desktop app gives you Claude Code with a graphical interface built for running multiple sessions side by side. |
CVE-2026-34690 | High | 7.8 | — | 2026-05-12 | After Effects versions 26.0, 25.6.4 and earlier are affected by a Stack-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. |
CVE-2026-42896 | High | 7.8 | — | 2026-05-12 | Integer overflow or wraparound in Windows DWM Core Library allows an authorized attacker to elevate privileges locally. |
CVE-2026-42831 | High | 7.8 | — | 2026-05-12 | Heap-based buffer overflow in Microsoft Office allows an unauthorized attacker to execute code locally. |
CVE-2026-41611 | High | 7.8 | — | 2026-05-12 | Improper neutralization of script-related html tags in a web page (basic xss) in Visual Studio Code allows an unauthorized attacker to execute code locally. |
CVE-2026-41095 | High | 7.8 | — | 2026-05-12 | Use after free in Data Deduplication allows an authorized attacker to elevate privileges locally. |
CVE-2026-41088 | High | 7.8 | — | 2026-05-12 | Access of resource using incompatible type ('type confusion') in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally. |
CVE-2026-40419 | High | 7.8 | — | 2026-05-12 | Use after free in Microsoft Office allows an authorized attacker to elevate privileges locally. |
CVE-2026-40418 | High | 7.8 | — | 2026-05-12 | Use after free in Microsoft Office allows an authorized attacker to elevate privileges locally. |
CVE-2026-40417 | High | 7.8 | — | 2026-05-12 | Weak authentication in Dynamics Business Central allows an authorized attacker to elevate privileges locally. |
CVE-2026-40408 | High | 7.8 | — | 2026-05-12 | Use after free in Windows Kernel-Mode Drivers allows an authorized attacker to elevate privileges locally. |
CVE-2026-40407 | High | 7.8 | — | 2026-05-12 | Heap-based buffer overflow in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally. |
CVE-2026-40399 | High | 7.8 | — | 2026-05-12 | Concurrent execution using shared resource with improper synchronization ('race condition') in Windows TCP/IP allows an authorized attacker to elevate privileges locally. |
CVE-2026-40398 | High | 7.8 | — | 2026-05-12 | Heap-based buffer overflow in Windows Remote Desktop allows an authorized attacker to elevate privileges locally. |
CVE-2026-40397 | High | 7.8 | — | 2026-05-12 | Heap-based buffer overflow in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally. |
CVE-2026-40382 | High | 7.8 | — | 2026-05-12 | Use after free in Windows Telephony Service allows an authorized attacker to elevate privileges locally. |
CVE-2026-40381 | High | 7.8 | — | 2026-05-12 | Improper access control in Azure Connected Machine Agent allows an authorized attacker to elevate privileges locally. |
CVE-2026-40377 | High | 7.8 | — | 2026-05-12 | Heap-based buffer overflow in Windows Cryptographic Services allows an authorized attacker to elevate privileges locally. |
CVE-2026-40369 | High | 7.8 | — | 2026-05-12 | Heap-based buffer overflow in Windows Kernel allows an authorized attacker to elevate privileges locally. |
CVE-2026-40362 | High | 7.8 | — | 2026-05-12 | Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally. |
CVE-2026-40360 | High | 7.8 | — | 2026-05-12 | Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to disclose information locally. |
CVE-2026-40359 | High | 7.8 | — | 2026-05-12 | Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally. |
CVE-2026-35421 | High | 7.8 | — | 2026-05-12 | Heap-based buffer overflow in Windows GDI allows an unauthorized attacker to execute code locally. |
CVE-2026-35420 | High | 7.8 | — | 2026-05-12 | Heap-based buffer overflow in Windows Kernel allows an authorized attacker to elevate privileges locally. |
CVE-2026-35418 | High | 7.8 | — | 2026-05-12 | Use after free in Windows Cloud Files Mini Filter Driver allows an authorized attacker to elevate privileges locally. |
CVE-2026-35417 | High | 7.8 | — | 2026-05-12 | Use after free in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally. |
CVE-2026-35415 | High | 7.8 | — | 2026-05-12 | Integer overflow or wraparound in Windows Storage Spaces Controller allows an authorized attacker to elevate privileges locally. |
CVE-2026-34687 | High | 7.8 | — | 2026-05-12 | Illustrator versions 29.8.6, 30.3 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. |
CVE-2026-34661 | High | 7.8 | — | 2026-05-12 | Illustrator versions 29.8.6, 30.3 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. |
CVE-2026-34638 | High | 7.8 | — | 2026-05-12 | Premiere Pro versions 26.0.2, 25.6.4 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. |
CVE-2026-34637 | High | 7.8 | — | 2026-05-12 | Premiere Pro versions 26.0.2, 25.6.4 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. |
CVE-2026-34636 | High | 7.8 | — | 2026-05-12 | Premiere Pro versions 26.0.2, 25.6.4 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. |
CVE-2026-34351 | High | 7.8 | — | 2026-05-12 | Concurrent execution using shared resource with improper synchronization ('race condition') in Windows TCP/IP allows an authorized attacker to elevate privileges locally. |
CVE-2026-34344 | High | 7.8 | — | 2026-05-12 | Access of resource using incompatible type ('type confusion') in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally. |
CVE-2026-34343 | High | 7.8 | — | 2026-05-12 | Heap-based buffer overflow in Windows Application Identity (AppID) Subsystem allows an authorized attacker to elevate privileges locally. |
CVE-2026-34338 | High | 7.8 | — | 2026-05-12 | Use after free in Windows Telephony Service allows an authorized attacker to elevate privileges locally. |
CVE-2026-34337 | High | 7.8 | — | 2026-05-12 | Use after free in Windows Cloud Files Mini Filter Driver allows an authorized attacker to elevate privileges locally. |
CVE-2026-34336 | High | 7.8 | — | 2026-05-12 | Integer overflow or wraparound in Windows DWM Core Library allows an authorized attacker to elevate privileges locally. |
CVE-2026-34334 | High | 7.8 | — | 2026-05-12 | Concurrent execution using shared resource with improper synchronization ('race condition') in Windows TCP/IP allows an authorized attacker to elevate privileges locally. |
CVE-2026-34333 | High | 7.8 | — | 2026-05-12 | Use after free in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally. |
CVE-2026-34330 | High | 7.8 | — | 2026-05-12 | Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally. |
CVE-2026-33841 | High | 7.8 | — | 2026-05-12 | Heap-based buffer overflow in Windows Kernel allows an authorized attacker to elevate privileges locally. |
CVE-2026-33840 | High | 7.8 | — | 2026-05-12 | Use after free in Windows Win32K - ICOMP allows an authorized attacker to elevate privileges locally. |
CVE-2026-33838 | High | 7.8 | — | 2026-05-12 | Double free in Windows Message Queuing allows an authorized attacker to elevate privileges locally. |
CVE-2026-33837 | High | 7.8 | — | 2026-05-12 | Heap-based buffer overflow in Windows TCP/IP allows an authorized attacker to elevate privileges locally. |
CVE-2026-33835 | High | 7.8 | — | 2026-05-12 | Use after free in Windows Cloud Files Mini Filter Driver allows an authorized attacker to elevate privileges locally. |
CVE-2026-33834 | High | 7.8 | — | 2026-05-12 | Improper access control in Windows Event Logging Service allows an authorized attacker to elevate privileges locally. |
CVE-2026-32204 | High | 7.8 | — | 2026-05-12 | External control of file name or path in Azure Monitor Agent allows an authorized attacker to elevate privileges locally. |
CVE-2026-7432 | High | 7.8 | — | 2026-05-12 | A race condition in Ivanti Secure Access Client before 22.8R6 allows a locally authenticated user to escalate privileges to SYSTEM |
CVE-2026-42832 | High | 7.7 | — | 2026-05-12 | Improper access control in Microsoft Office allows an unauthorized attacker to perform spoofing locally. |
CVE-2026-33821 | High | 7.7 | — | 2026-05-12 | Improper privilege management in Microsoft Dynamics 365 Customer Insights allows an authorized attacker to elevate privileges over a network. |
CVE-2026-8547 | High | 7.5 | — | 2026-05-14 | Insufficient policy enforcement in Passwords in Google Chrome on Windows prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to perform privilege escalation via a crafted HTML page. |
CVE-2026-8521 | High | 7.5 | — | 2026-05-14 | Use after free in Tab Groups in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to execute arbitrary code via malicious network traffic. |
CVE-2026-8510 | High | 7.5 | — | 2026-05-14 | Integer overflow in Skia in Google Chrome on Windows prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to perform an out of bounds memory write via a crafted HTML page. |
CVE-2026-42899 | High | 7.5 | — | 2026-05-12 | Loop with unreachable exit condition ('infinite loop') in ASP.NET Core allows an unauthorized attacker to deny service over a network. |
CVE-2026-40406 | High | 7.5 | — | 2026-05-12 | Use after free in Windows TCP/IP allows an unauthorized attacker to disclose information over a network. |
CVE-2026-40405 | High | 7.5 | — | 2026-05-12 | Null pointer dereference in Windows TCP/IP allows an unauthorized attacker to deny service over a network. |
CVE-2026-35424 | High | 7.5 | — | 2026-05-12 | Missing release of memory after effective lifetime in Windows Internet Key Exchange (IKE) Protocol allows an unauthorized attacker to deny service over a network. |
CVE-2026-32161 | High | 7.5 | — | 2026-05-12 | Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Native WiFi Miniport Driver allows an unauthorized attacker to execute code over an adjacent network. |
CVE-2026-45539 | High | 7.4 | — | 2026-05-15 | Microsoft APM is an open-source, community-driven dependency manager for AI agents. |
CVE-2026-42893 | High | 7.4 | — | 2026-05-12 | Improper neutralization of special elements used in a command ('command injection') in M365 Copilot allows an unauthorized attacker to perform tampering over a network. |
CVE-2026-41107 | High | 7.4 | — | 2026-05-12 | External control of file name or path in Microsoft Edge (Chromium-based) allows an unauthorized attacker to disclose information over a network. |
CVE-2026-40414 | High | 7.4 | — | 2026-05-12 | Windows TCP/IP Denial of Service Vulnerability |
CVE-2026-40413 | High | 7.4 | — | 2026-05-12 | Windows TCP/IP Denial of Service Vulnerability |
CVE-2026-35433 | High | 7.3 | — | 2026-05-12 | Improper input validation in .NET allows an unauthorized attacker to elevate privileges locally. |
CVE-2026-32177 | High | 7.3 | — | 2026-05-12 | Heap-based buffer overflow in .NET allows an unauthorized attacker to elevate privileges locally. |
CVE-2026-44641 | High | 7.1 | — | 2026-05-15 | Microsoft APM is an open-source, community-driven dependency manager for AI agents. |
CVE-2026-41102 | High | 7.1 | — | 2026-05-12 | Improper access control in Microsoft Office PowerPoint allows an authorized attacker to perform spoofing locally. |
CVE-2026-41101 | High | 7.1 | — | 2026-05-12 | Improper access control in Microsoft Office Word allows an authorized attacker to perform spoofing locally. |
CVE-2026-40401 | High | 7.1 | — | 2026-05-12 | Windows TCP/IP Denial of Service Vulnerability |
CVE-2026-42825 | High | 7.0 | — | 2026-05-12 | Use after free in Windows Telephony Service allows an authorized attacker to elevate privileges locally. |
CVE-2026-40410 | High | 7.0 | — | 2026-05-12 | Use after free in Windows SMB Client allows an authorized attacker to elevate privileges locally. |
CVE-2026-35416 | High | 7.0 | — | 2026-05-12 | Access of resource using incompatible type ('type confusion') in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally. |
CVE-2026-34347 | High | 7.0 | — | 2026-05-12 | Use after free in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally. |
CVE-2026-34345 | High | 7.0 | — | 2026-05-12 | Access of resource using incompatible type ('type confusion') in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally. |
CVE-2026-34342 | High | 7.0 | — | 2026-05-12 | Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Print Spooler Components allows an authorized attacker to elevate privileges locally. |
CVE-2026-34341 | High | 7.0 | — | 2026-05-12 | Double free in Windows Link-Layer Discovery Protocol (LLDP) allows an authorized attacker to elevate privileges locally. |
CVE-2026-34340 | High | 7.0 | — | 2026-05-12 | Use after free in Windows Projected File System allows an authorized attacker to elevate privileges locally. |
CVE-2026-34331 | High | 7.0 | — | 2026-05-12 | Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally. |
CVE-2026-33839 | High | 7.0 | — | 2026-05-12 | Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally. |
CVE-2026-41097 | Medium | 6.7 | — | 2026-05-12 | Reliance on a component that is not updateable in Windows Secure Boot allows an authorized attacker to bypass a security feature locally. |
CVE-2026-32170 | Medium | 6.7 | — | 2026-05-12 | Double free in Windows Rich Text Edit allows an authorized attacker to elevate privileges locally. |
CVE-2026-21530 | Medium | 6.7 | — | 2026-05-12 | Double free in Windows Rich Text Edit allows an authorized attacker to elevate privileges locally. |
CVE-2026-8550 | Medium | 6.5 | — | 2026-05-14 | Use after free in Google Lens in Google Chrome prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory via a crafted HTML page. |
CVE-2026-42891 | Medium | 6.5 | — | 2026-05-12 | User interface (ui) misrepresentation of critical information in Microsoft Edge (Chromium-based) allows an unauthorized attacker to perform spoofing over a network. |
CVE-2026-42830 | Medium | 6.5 | — | 2026-05-12 | Untrusted search path in Azure Monitor Agent allows an authorized attacker to elevate privileges locally. |
CVE-2026-40374 | Medium | 6.5 | — | 2026-05-12 | Exposure of sensitive information to an unauthorized actor in Power Automate allows an authorized attacker to disclose information over a network. |
CVE-2026-35422 | Medium | 6.5 | — | 2026-05-12 | Authentication bypass using an alternate path or channel in Windows TCP/IP allows an authorized attacker to bypass a security feature over a network. |
CVE-2026-34350 | Medium | 6.5 | — | 2026-05-12 | Null pointer dereference in Windows Storport Miniport Driver allows an unauthorized attacker to deny service over a network. |
CVE-2026-41610 | Medium | 6.3 | — | 2026-05-12 | Improper neutralization of input during web page generation ('cross-site scripting') in Visual Studio Code allows an unauthorized attacker to bypass a security feature locally. |
CVE-2026-41614 | Medium | 6.2 | — | 2026-05-12 | Improper access control in M365 Copilot for Desktop allows an unauthorized attacker to perform spoofing locally. |
CVE-2026-40380 | Medium | 6.2 | — | 2026-05-12 | Heap-based buffer overflow in Volume Manager Extension Driver allows an authorized attacker to execute code with a physical attack. |
CVE-2026-46383 | Medium | 5.5 | — | 2026-05-15 | Microsoft APM is an open-source, community-driven dependency manager for AI agents. |
CVE-2026-41612 | Medium | 5.5 | — | 2026-05-12 | Relative path traversal in Visual Studio Code allows an unauthorized attacker to disclose information locally. |
CVE-2026-35440 | Medium | 5.5 | — | 2026-05-12 | Files or directories accessible to external parties in Microsoft Office Word allows an unauthorized attacker to disclose information locally. |
CVE-2026-35419 | Medium | 5.5 | — | 2026-05-12 | Out-of-bounds read in Windows DWM Core Library allows an authorized attacker to disclose information locally. |
CVE-2026-34663 | Medium | 5.5 | — | 2026-05-12 | Illustrator versions 29.8.6, 30.3 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. |
CVE-2026-34662 | Medium | 5.5 | — | 2026-05-12 | Illustrator versions 29.8.6, 30.3 and earlier are affected by a NULL Pointer Dereference vulnerability that could result in an application denial-of-service. |
CVE-2026-34339 | Medium | 5.5 | — | 2026-05-12 | Null pointer dereference in Windows LDAP - Lightweight Directory Access Protocol allows an authorized attacker to deny service locally. |
CVE-2026-32185 | Medium | 5.5 | — | 2026-05-12 | Files or directories accessible to external parties in Microsoft Teams allows an unauthorized attacker to perform spoofing locally. |
CVE-2026-8561 | Medium | 5.4 | — | 2026-05-14 | Incorrect security UI in Fullscreen in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to perform UI spoofing via a crafted HTML page. |
CVE-2026-42838 | Medium | 5.4 | — | 2026-05-12 | Improper neutralization of special elements in output used by a downstream component ('injection') in Microsoft Edge (Chromium-based) allows an unauthorized attacker to elevate privileges over a network. |
CVE-2026-35423 | Medium | 5.4 | — | 2026-05-12 | Out-of-bounds read in Telnet Client allows an unauthorized attacker to disclose information over a network. |
CVE-2026-8546 | Medium | 5.3 | — | 2026-05-14 | Out of bounds read in GPU in Google Chrome on Mac and Windows prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory via a crafted HTML pag… |
CVE-2026-8543 | Medium | 5.3 | — | 2026-05-14 | Out of bounds read in FileSystem in Google Chrome on Mac prior to 148.0.7778.168 allowed a remote attacker who convinced a user to engage in specific UI gestures to obtain potentially sensitive information from process memory via a crafted… |
CVE-2026-8541 | Medium | 5.3 | — | 2026-05-14 | Out of bounds read in UI in Google Chrome prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory via a crafted HTML page. |
CVE-2026-8516 | Medium | 5.3 | — | 2026-05-14 | Insufficient validation of untrusted input in DataTransfer in Google Chrome prior to 148.0.7778.168 allowed a remote attacker who convinced a user to engage in specific UI gestures to obtain potentially sensitive information from process m… |
CVE-2026-41100 | Medium | 4.4 | — | 2026-05-12 | Improper access control in M365 Copilot allows an authorized attacker to perform spoofing locally. |
CVE-2026-32209 | Medium | 4.4 | — | 2026-05-12 | Improper access control in Windows Filtering Platform (WFP) allows an authorized attacker to bypass a security feature locally. |
CVE-2026-7431 | Medium | 4.4 | — | 2026-05-12 | An incorrect permission assignment for critical resource of Ivanti Secure Access Client before 22.8R6 allows a local authenticated user to read or modify sensitive log data via write access to a shared memory section. |
CVE-2026-8567 | Medium | 4.3 | — | 2026-05-14 | Integer overflow in ANGLE in Google Chrome on Windows prior to 148.0.7778.168 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. |
CVE-2026-8563 | Medium | 4.3 | — | 2026-05-14 | Insufficient policy enforcement in IFrame Sandbox in Google Chrome on Windows prior to 148.0.7778.168 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. |
CVE-2026-8562 | Medium | 4.3 | — | 2026-05-14 | Side-channel information leakage in Navigation in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to leak cross-origin data via a crafted HTML page. |
CVE-2026-8559 | Medium | 4.3 | — | 2026-05-14 | Integer overflow in Internationalization in Google Chrome on Windows prior to 148.0.7778.168 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. |
CVE-2026-8528 | Medium | 4.3 | — | 2026-05-14 | Insufficient validation of untrusted input in SiteIsolation in Google Chrome prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to bypass Site Isolation via a crafted HTML page. |
CVE-2026-40421 | Medium | 4.3 | — | 2026-05-12 | Files or directories accessible to external parties in Microsoft Office Word allows an unauthorized attacker to disclose information locally. |
CVE-2026-40416 | Medium | 4.3 | — | 2026-05-12 | User interface (ui) misrepresentation of critical information in Microsoft Edge (Chromium-based) allows an unauthorized attacker to perform spoofing over a network. |
CVE-2026-35429 | Medium | 4.3 | — | 2026-05-12 | User interface (ui) misrepresentation of critical information in Microsoft Edge (Chromium-based) allows an unauthorized attacker to perform spoofing over a network. |
CVE-2026-32175 | Medium | 4.3 | — | 2026-05-12 | A tampering vulnerability exists when .NET Core improperly handles specially crafted files. |
CVE-2026-8556 | Low | 3.1 | — | 2026-05-14 | Inappropriate implementation in ANGLE in Google Chrome on Windows prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. |
CVE-2026-8554 | Low | 3.1 | — | 2026-05-14 | Type Confusion in ANGLE in Google Chrome on Windows prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to perform an out of bounds memory write via a crafted HTML page. |
CVE-2026-8545 | Low | 3.1 | — | 2026-05-14 | Object corruption in Compositing in Google Chrome prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. |
CVE-2026-44503 | — | — | — | 2026-05-14 | The RedirectHandler middleware in microsoft/kiota-java (com.microsoft.kiota:microsoft-kiota-http-okHttp v1.9.0) and other Kiota libraries fails to strip sensitive HTTP headers when following 3xx redirects to a different host or scheme. |
Other vendors (1590 CVEs across 479 vendors)
N/a · 130 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-31239 | Critical | 9.8 | — | 2026-05-12 | The mamba language model framework thru 2.2.6 is vulnerable to insecure deserialization (CWE-502) when loading pre-trained models from HuggingFace Hub. |
CVE-2026-31238 | Critical | 9.8 | — | 2026-05-12 | The Ludwig framework thru 0.10.4 is vulnerable to insecure deserialization (CWE-502) in its model serving component. |
CVE-2026-31237 | Critical | 9.8 | — | 2026-05-12 | The Ludwig framework thru 0.10.4 is vulnerable to insecure deserialization (CWE-502) through its predict() method. |
CVE-2026-31236 | Critical | 9.8 | — | 2026-05-12 | The llm CLI tool thru 0.27.1 contains a critical code injection vulnerability via its --functions command-line argument. |
CVE-2026-31235 | Critical | 9.8 | — | 2026-05-12 | The imgaug library thru 0.4.0 contains an insecure deserialization vulnerability in its BackgroundAugmenter class within the multicore.py module. |
CVE-2026-31234 | Critical | 9.8 | — | 2026-05-12 | Horovod thru 0.28.1 contains an insecure deserialization vulnerability (CWE-502) in its KVStore HTTP server component. |
CVE-2026-31233 | Critical | 9.8 | — | 2026-05-12 | Guardrails AI thru 0.6.7 contains a code injection vulnerability (CWE-94) in its Hub package installation mechanism. |
CVE-2026-31231 | Critical | 9.8 | — | 2026-05-12 | Cognee thru v0.4.0 contains a critical remote code execution vulnerability in its notebook cell execution API endpoint. |
CVE-2026-31230 | Critical | 9.8 | — | 2026-05-12 | The Adversarial Robustness Toolbox (ART) thru 1.20.1 contains a command-line argument injection vulnerability in its Kubeflow component (robustness_evaluation_fgsm_pytorch.py). |
CVE-2026-31229 | Critical | 9.8 | — | 2026-05-12 | The Adversarial Robustness Toolbox (ART) thru 1.20.1 contains an insecure deserialization vulnerability (CWE-502) in its Kubeflow component's model loading functionality. |
CVE-2025-65719 | Critical | 9.8 | — | 2026-05-12 | An issue in Open Source Kubectl MCP Server v1.1.1 allows attackers to execute arbitrary code on a victim system via user interaction with a crafted HTML page. |
CVE-2026-31228 | Critical | 9.8 | — | 2026-05-12 | The Adversarial Robustness Toolbox (ART) thru 1.20.1 contains a remote code execution vulnerability in its Kubeflow component. |
CVE-2026-31226 | Critical | 9.8 | — | 2026-05-12 | The TinyZero project thru commit 6652a63c57fa7e5ccde3fc9c598c7176ff15b839 (2025-58-24) contains a critical command injection vulnerability (CWE-78) in its HDFS file operation utilities. |
CVE-2026-31220 | Critical | 9.8 | — | 2026-05-12 | PySyft (Syft Datasite/Server) versions 0.9.5 and earlier are vulnerable to remote code execution due to insufficient validation and sandboxing of user-submitted code. |
CVE-2026-31217 | Critical | 9.8 | — | 2026-05-12 | The _load_model() function in the neural_magic_training.py script of the optimate project in commit a6d302f912b481c94370811af6b11402f51d377f (2024-07-21) allows arbitrary code execution. |
CVE-2026-31214 | Critical | 9.8 | — | 2026-05-12 | The torch-checkpoint-shrink.py script in the ml-engineering project in commit 0099885db36a8f06556efe1faf552518852cb1e0 (2025-20-27) contains an insecure deserialization vulnerability (CWE-502). |
CVE-2026-38567 | Critical | 9.8 | — | 2026-05-11 | HireFlow v1.2 is vulnerable to SQL injection in the /login and /search endpoints. |
CVE-2026-31216 | Critical | 9.1 | — | 2026-05-12 | The nexent v1.7.5.2 backend service contains an unauthorized arbitrary storage file deletion vulnerability in its file management API. |
CVE-2026-31215 | Critical | 9.1 | — | 2026-05-12 | The nexent v1.7.5.2 backend service contains an unauthorized arbitrary file deletion vulnerability in its ElasticSearch service interface. |
CVE-2026-6637 | High | 8.8 | — | 2026-05-14 | Stack buffer overflow in PostgreSQL module "refint" allows an unprivileged database user to execute arbitrary code as the operating system user running the database. |
CVE-2026-6477 | High | 8.8 | — | 2026-05-14 | Use of inherently dangerous function PQfn(..., result_is_int=0, ...) in PostgreSQL libpq lo_export(), lo_read(), lo_lseek64(), and lo_tell64() functions allows the server superuser to overwrite a client stack buffer with an arbitrarily-lar… |
CVE-2026-6475 | High | 8.8 | — | 2026-05-14 | Symlink following in PostgreSQL pg_basebackup plain format and in pg_rewind allows an origin superuser to overwrite local files, e.g. |
CVE-2026-6473 | High | 8.8 | — | 2026-05-14 | Integer wraparound in multiple PostgreSQL server features allows an unprivileged database user to cause the server to undersize an allocation and write out-of-bounds. |
CVE-2026-31232 | High | 8.8 | — | 2026-05-12 | The CosyVoice project thru commit 6e01309e01bc93bbeb83bdd996b1182a81aaf11e (2025-30-21) contains an insecure deserialization vulnerability (CWE-502) in its model loading process. |
CVE-2026-31225 | High | 8.8 | — | 2026-05-12 | The superduper project thru v0.10.0 contains a critical remote code execution vulnerability in its query parsing component. |
CVE-2026-31224 | High | 8.8 | — | 2026-05-12 | The snorkel library thru v0.10.0 contains an insecure deserialization vulnerability (CWE-502) in the MultitaskClassifier.load() method of the MultitaskClassifier class. |
CVE-2026-31223 | High | 8.8 | — | 2026-05-12 | The snorkel library thru v0.10.0 contains a critical insecure deserialization vulnerability (CWE-502) in the BaseLabeler.load() method of the BaseLabeler class. |
CVE-2026-31222 | High | 8.8 | — | 2026-05-12 | The snorkel library thru v0.10.0 contains an insecure deserialization vulnerability (CWE-502) in the Trainer.load() method of the Trainer class. |
CVE-2026-31219 | High | 8.8 | — | 2026-05-12 | The _load_model() function in the neural_magic_training.py script of the optimate project in commit a6d302f912b481c94370811af6b11402f51d377f (2024-07-21) is vulnerable to insecure deserialization (CWE-502). |
CVE-2026-31218 | High | 8.8 | — | 2026-05-12 | The _load_model() function in the neural_magic_training.py script of the optimate project in commit a6d302f912b481c94370811af6b11402f51d377f (2024-07-21) is vulnerable to insecure deserialization (CWE-502). |
CVE-2026-36734 | High | 8.8 | — | 2026-05-11 | EDIMAX BR-6428nS V3 1.15 is vulnerable to Command Injection. |
CVE-2026-34253 | High | 8.2 | — | 2026-05-15 | A buffer underflow vulnerability has been identified in the ogg123 utility from the vorbis-tools 1.4.3 package in function remotethread in remote.c. |
CVE-2026-38568 | High | 8.1 | — | 2026-05-11 | HireFlow v1.2 is vulnerable to Incorrect Access Control. |
CVE-2026-38566 | High | 8.1 | — | 2026-05-11 | HireFlow v1.2 does not implement CSRF token validation on any state-changing POST endpoint. |
CVE-2026-30635 | High | 8.1 | — | 2026-05-11 | Command injection vulnerability in automagik-genie 2.5.27 MCP Server allows attackers to execute arbitrary commands via the view_task (aka view) in the readTranscriptFromCommit function in dist/mcp/server.js when a user reads from an exter… |
CVE-2023-27753 | High | 8.0 | — | 2026-05-12 | An arbitrary file upload vulnerability in MK-Auth 23.01K4.9 allows attackers to execute arbitrary code via uploading a crafted PHP file. |
CVE-2026-38728 | High | 7.5 | — | 2026-05-15 | An issue in Nodemailer smtp_server before v.3.18.3 allows a remote attacker to cause a denial of service via the SMTPStream._write, lib/smtp-stream.js components |
CVE-2026-6479 | High | 7.5 | — | 2026-05-14 | Uncontrolled recursion in PostgreSQL SSL and GSS negotiation allows an attacker able to connect to a PostgreSQL AF_UNIX socket to achieve sustained denial of service. |
CVE-2025-28344 | High | 7.5 | — | 2026-05-13 | striso-control-firmware 54c9722 is vulnerable to Buffer Overflow in function AuxJack. |
CVE-2025-28343 | High | 7.5 | — | 2026-05-13 | striso-control-firmware 54c9722 is vulnerable to Buffer Overflow in function ThreadReadButtons. |
CVE-2026-31240 | High | 7.5 | — | 2026-05-12 | The mem0 1.0.0 server lacks authentication and authorization controls for its memory management API endpoints. |
CVE-2026-31248 | High | 7.5 | — | 2026-05-11 | Docling's METS GBS backend is vulnerable to XML Entity Expansion (XXE) attacks thru 2.61.0. |
CVE-2026-31247 | High | 7.5 | — | 2026-05-11 | Docling's JATS XML backend is vulnerable to XML Entity Expansion (XXE) attacks thru 2.61.0. |
CVE-2025-65418 | High | 7.5 | — | 2026-05-11 | docuFORM Managed Print Service Client 11.11c is vulnerable to a directory traversal allowing attackers to read arbitrary files via crafted url. |
CVE-2026-39054 | High | 7.3 | — | 2026-05-15 | Oinone Pamirs 7.0.0 contains a command injection vulnerability in CommandHelper.executeCommands. |
CVE-2026-24712 | High | 7.3 | — | 2026-05-14 | Northern.tech CFEngine Enterprise and Community before 3.21.8, 3.24.3, and 3.27.0 allows Command injection. |
CVE-2024-55045 | High | 7.3 | — | 2026-05-13 | Firmament-Autopilot FMT-Firmware commit de5aec was discovered to contain a buffer overflow via the task_mavobc_entry function at /comm/task_comm.c. |
CVE-2026-37430 | High | 7.3 | — | 2026-05-13 | An arbitrary file upload vulnerability in the ShopOrderImportController.java component of qihang-wms commit 75c15a allows attackers to execute arbitrary code via uploading a crafted file. |
CVE-2026-37630 | High | 7.3 | — | 2026-05-11 | An issue in QuickJS-NG v.0.12.1 allows an attacker to execute arbitrary code via the js_mapped_arguments_mark function |
CVE-2026-8305 | High | 7.3 | — | 2026-05-11 | A vulnerability was detected in OpenClaw up to 2026.1.24. |
CVE-2026-36962 | High | 7.3 | — | 2026-05-11 | SQL Injection in MuuCMF T6 v1.9.4.20260115 allows an unauthenticated attacker to compromise the entire database, achieve unauthorized administrative access, and potentially gain remote code execution by writing malicious files to the serve… |
CVE-2026-31254 | High | 7.3 | — | 2026-05-11 | The flash-attention project thru commit e724e2588cbe754beb97cf7c011b5e7e34119e62 (2025-13-04) contains a code injection vulnerability (CWE-94) in its training script. |
CVE-2026-31253 | High | 7.3 | — | 2026-05-11 | The flash-attention training framework thru commit e724e2588cbe754beb97cf7c011b5e7e34119e62 (2025-13-04) contains an insecure deserialization vulnerability (CWE-502) in its checkpoint loading mechanism. |
CVE-2026-31251 | High | 7.3 | — | 2026-05-11 | CosyVoice thru commit 6e01309e01bc93bbeb83bdd996b1182a81aaf11e (2025-30-21) contains an insecure deserialization vulnerability (CWE-502) in its gRPC server component. |
CVE-2026-31250 | High | 7.3 | — | 2026-05-11 | CosyVoice thru commit 6e01309e01bc93bbeb83bdd996b1182a81aaf11e (2025-30-21) contains an insecure deserialization vulnerability (CWE-502) in its average_model.py model averaging tool. |
CVE-2026-31249 | High | 7.3 | — | 2026-05-11 | CosyVoice thru commit 6e01309e01bc93bbeb83bdd996b1182a81aaf11e (2025-30-21) contains an insecure deserialization vulnerability (CWE-502) in its make_parquet_list.py data processing tool. |
CVE-2025-61314 | High | 7.3 | — | 2026-05-11 | A reflected cross-site scripted (XSS) vulnerability in the dfm-menu_orderopt.php component of GmbH Mecury Managed Print Services (docuForm) v11.11c allows attackers to execute arbitrary Javascript in the context of a user's browser via inj… |
CVE-2025-61313 | High | 7.3 | — | 2026-05-11 | A reflected cross-site scripted (XSS) vulnerability in the dfm-menu_markeralerts.php component of GmbH Mecury Managed Print Services (docuForm) v11.11c allows attackers to execute arbitrary Javascript in the context of a user's browser via… |
CVE-2025-61312 | High | 7.3 | — | 2026-05-11 | A reflected cross-site scripted (XSS) vulnerability in the acc-menu_pricess.php component of GmbH Mecury Managed Print Services (docuForm) v11.11c allows attackers to execute arbitrary Javascript in the context of a user's browser via inje… |
CVE-2025-61311 | High | 7.3 | — | 2026-05-11 | A reflected cross-site scripted (XSS) vulnerability in the dfm-menu_alerts.php component of GmbH Mecury Managed Print Services (docuForm) v11.11c allows attackers to execute arbitrary Javascript in the context of a user's browser via injec… |
CVE-2026-6476 | High | 7.2 | — | 2026-05-14 | SQL injection in PostgreSQL pg_createsubscriber allows an attacker with pg_create_subscription rights to execute arbitrary SQL as a superuser. |
CVE-2026-36741 | High | 7.2 | — | 2026-05-13 | U-SPEED AC1200 Gigabit Wi-Fi Router (Model: T18-21K) V1.0 is vulnerable to Command Injection. |
CVE-2026-36742 | Medium | 6.8 | — | 2026-05-13 | Hiseeu C90 v5.7.15 is vulnerable to Insecure Permissions. |
CVE-2026-36738 | Medium | 6.8 | — | 2026-05-13 | U-SPEED AC1200 Gigabit Wi-Fi Router (Model: T18-21K) V1.0 is vulnerable to Incorrect Access Control. |
CVE-2026-39053 | Medium | 6.5 | — | 2026-05-15 | Oinone Pamirs 7.0.0 contains an XML External Entity (XXE) issue in its XStream-based XML parsing logic. |
CVE-2026-39052 | Medium | 6.5 | — | 2026-05-15 | Oinone Pamirs 7.0.0 contains a code execution vulnerability via ScriptRunner. |
CVE-2025-67437 | Medium | 6.5 | — | 2026-05-15 | Medical Management System a81df1ce700a9662cb136b27af47f4cbde64156b is vulnerable to Insecure Permissions, which allows arbitrary user password reset. |
CVE-2026-6478 | Medium | 6.5 | — | 2026-05-14 | Covert timing channel in comparison of MD5-hashed password in PostgreSQL authentication allows an attacker to recover user credentials sufficient to authenticate. |
CVE-2026-31156 | Medium | 6.5 | — | 2026-05-13 | A path injection vulnerability exists in OpenPLC v3 (2c82b0e79c53f8c1f1458eee15fec173400d6e1a) as the binary program compiled from glue_generator.cpp does not perform any validation on the file path parameters passed via the command line. |
CVE-2026-37429 | Medium | 6.5 | — | 2026-05-13 | qihang-wms commit 75c15a was discovered to contain a SQL injection vulnerability via the datascope parameter in the SysUserMapper.xml file. |
CVE-2026-37428 | Medium | 6.5 | — | 2026-05-13 | qihang-wms commit 75c15a was discovered to contain a SQL injection vulnerability via the datascope parameter in the SysDeptMapper.xml file. |
CVE-2026-31246 | Medium | 6.5 | — | 2026-05-11 | GPT-Pilot thru commit 0819827ce20346ef5f25b3fe29293cb448840565 (2025-09-03) contains a command injection vulnerability (CWE-78) in the Executor.run() method. |
CVE-2025-67031 | Medium | 6.3 | — | 2026-05-15 | ORSEE (Online Recruitment System for Economic Experiments) 3.1.0 contains an authenticated Remote Code Execution vulnerability in the participant profile field processing subsystem. |
CVE-2025-69443 | Medium | 6.3 | — | 2026-05-14 | Remote Code Execution in coleam00 Archon 0.1.0. |
CVE-2025-65416 | Medium | 6.3 | — | 2026-05-11 | docuFORM Managed Print Service Client 11.11c is vulnerable to arbitrary file upload via pmupdate.php. |
CVE-2024-48519 | Medium | 6.2 | — | 2026-05-13 | Buffer Overflow vulnerability in Ardupilot rover commit v.c56439b045162058df0ff136afea3081fcd06d38 allows a local attacker to cause a denial of service via the AP_InertialSensor_ADIS1647x.cpp, ArduRover, ADIS1647x Sensor component. |
CVE-2024-51395 | Medium | 6.2 | — | 2026-05-13 | Buffer Overflow vulnerability in Ardupiot Copter Latest commit 92693e023793133e49a035daf37c14433e484778 allows a local attacker to cause a denial of service via the AP_SmartAudio::loop, AP_SmartAudio, AP_SmartAudio.cpp components. |
CVE-2026-24710 | Medium | 6.1 | — | 2026-05-14 | Northern.tech CFEngine Enterprise before 3.21.8, 3.24.3, and 3.27.0 allows XSS. |
CVE-2026-36906 | Medium | 6.1 | — | 2026-05-11 | Cross Site Scripting vulnerability in iotgateway v.3.0.1 allows a remote attacker to execute arbitrary code via the Log Record Function |
CVE-2025-65417 | Medium | 6.1 | — | 2026-05-11 | docuFORM Managed Print Service Client 11.11c is vulnerable to a reflected cross site scripting attack via the login page of the application. |
CVE-2025-61310 | Medium | 6.1 | — | 2026-05-11 | A reflected cross-site scripted (XSS) vulnerability in the acc-menu_billings.php component of GmbH Mecury Managed Print Services (docuForm) v11.11c allows attackers to execute arbitrary Javascript in the context of a user's browser via inj… |
CVE-2025-61309 | Medium | 6.1 | — | 2026-05-11 | A reflected cross-site scripted (XSS) vulnerability in the dfm-menu_departments.php component of GmbH Mecury Managed Print Services (docuForm) v11.11c allows attackers to execute arbitrary Javascript in the context of a user's browser via… |
CVE-2025-61308 | Medium | 6.1 | — | 2026-05-11 | A reflected cross-site scripted (XSS) vulnerability in the dfm-menu_maintenance.php component of GmbH Mecury Managed Print Services (docuForm) v11.11c allows attackers to execute arbitrary Javascript in the context of a user's browser via… |
CVE-2025-61307 | Medium | 6.1 | — | 2026-05-11 | A reflected cross-site scripted (XSS) vulnerability in the acc-menu_papers.php component of GmbH Mecury Managed Print Services (docuForm) v11.11c allows attackers to execute arbitrary Javascript in the context of a user's browser via injec… |
CVE-2025-61306 | Medium | 6.1 | — | 2026-05-11 | A reflected cross-site scripted (XSS) vulnerability in the dfm-menu_coveragealerts.php component of GmbH Mecury Managed Print Services (docuForm) v11.11c allows attackers to execute arbitrary Javascript in the context of a user's browser v… |
CVE-2025-61305 | Medium | 6.1 | — | 2026-05-11 | A reflected cross-site scripted (XSS) vulnerability in the dfm-menu_firmware.php component of GmbH Mecury Managed Print Services (docuForm) v11.11c allows attackers to execute arbitrary Javascript in the context of a user's browser via inj… |
CVE-2026-8261 | Medium | 5.9 | — | 2026-05-11 | A vulnerability was determined in Squirrel up to 3.2. |
CVE-2026-31252 | Medium | 5.7 | — | 2026-05-11 | CosyVoice thru commit 6e01309e01bc93bbeb83bdd996b1182a81aaf11e (2025-30-21) contains an insecure deserialization vulnerability (CWE-502) in its model loading component. |
CVE-2025-29338 | Medium | 5.6 | — | 2026-05-13 | NXP moal.ko Wi-Fi driver 5.1.7.10 FW version from v17.92.1.p149.43 To v17.92.1.p149.157 was discovered to contain a buffer overflow via the mod_para parameter in the woal_init_module_param function. |
CVE-2024-51394 | Medium | 5.5 | — | 2026-05-13 | Buffer Overflow vulnerability in Ardupiot Copter Latest commit 92693e023793133e49a035daf37c14433e484778 allows a local attacker to cause a denial of service via the AP_MSP::loop, AP_MSP, AP_MSP.cpp components. |
CVE-2026-6472 | Medium | 5.4 | — | 2026-05-14 | Missing authorization in PostgreSQL CREATE TYPE allows an object creator to hijack other queries that use search_path to find user-defined types, including extension-defined types. |
CVE-2023-30059 | Medium | 5.4 | — | 2026-05-12 | An insecure direct object reference in MK-Auth 23.01K4.9 allows attackers to access and send support calls for other users via manipulation of the chamado parameter through a crafted GET request. |
CVE-2025-70842 | Medium | 5.4 | — | 2026-05-12 | A Stored Cross-Site Scripting (XSS) vulnerability was discovered in the File Management module of FluentCMS 1.2.3. |
CVE-2026-38569 | Medium | 5.4 | — | 2026-05-11 | HireFlow v1.2 is vulnerable to Cross Site Scripting (XSS) in candidate_detail.html via the Resume or Feedback Comment fields via POST /candidates/add or POST /feedback/add. |
CVE-2025-65415 | Medium | 5.4 | — | 2026-05-11 | docuFORM Managed Print Service Client 11.11c is vulnerable to a session fixation attack via the login page of the application. |
CVE-2026-38740 | Medium | 5.3 | — | 2026-05-14 | Foscam VD1 Video Doorbell before V5.3.13_1072 is vulnerable to Cleartext Transmission of Sensitive Information. |
CVE-2026-24711 | Medium | 5.3 | — | 2026-05-14 | Northern.tech CFEngine Enterprise before 3.21.8, 3.24.3, and 3.27.0 has Incorrect Access Control. |
CVE-2026-8258 | Medium | 5.3 | — | 2026-05-11 | A flaw has been found in Squirrel up to 3.2. |
CVE-2026-6575 | Medium | 4.3 | — | 2026-05-14 | Buffer over-read in PostgreSQL function pg_restore_attribute_stats() accepts array values of unmatched length, which causes query planning to read past end of one array. |
CVE-2026-6474 | Medium | 4.3 | — | 2026-05-14 | Externally-controlled format string in PostgreSQL timeofday() function allows an attacker to retrieve portions of server memory, via crafted timezone zones. |
CVE-2026-8292 | Medium | 4.3 | — | 2026-05-11 | A security vulnerability has been detected in Open5GS up to 2.7.7. |
CVE-2026-8291 | Medium | 4.3 | — | 2026-05-11 | A weakness has been identified in Open5GS up to 2.7.7. |
CVE-2026-8290 | Medium | 4.3 | — | 2026-05-11 | A security flaw has been discovered in Open5GS up to 2.7.7. |
CVE-2026-8289 | Medium | 4.3 | — | 2026-05-11 | A vulnerability was identified in Open5GS up to 2.7.7. |
CVE-2026-8288 | Medium | 4.3 | — | 2026-05-11 | A vulnerability was determined in Open5GS up to 2.7.7. |
CVE-2026-8270 | Medium | 4.3 | — | 2026-05-11 | A vulnerability was determined in Open5GS up to 2.7.7. |
CVE-2026-8269 | Medium | 4.3 | — | 2026-05-11 | A vulnerability was found in Open5GS up to 2.7.7. |
CVE-2026-8268 | Medium | 4.3 | — | 2026-05-11 | A vulnerability has been found in Open5GS up to 2.7.7. |
CVE-2026-8267 | Medium | 4.3 | — | 2026-05-11 | A flaw has been found in Open5GS up to 2.7.7. |
CVE-2026-8266 | Medium | 4.3 | — | 2026-05-11 | A vulnerability was detected in Open5GS up to 2.7.7. |
CVE-2026-8252 | Medium | 4.3 | — | 2026-05-11 | A vulnerability was determined in Open5GS up to 2.7.7. |
CVE-2026-6638 | Low | 3.7 | — | 2026-05-14 | SQL injection in PostgreSQL logical replication ALTER SUBSCRIPTION ... |
CVE-2026-8276 | Low | 3.7 | — | 2026-05-11 | A flaw has been found in bettercap up to 2.41.5. |
CVE-2026-8275 | Low | 3.7 | — | 2026-05-11 | A vulnerability was detected in bettercap up to 2.41.5. |
CVE-2026-20887 | — | — | — | 2026-05-12 | Improper access control for some Intel Vision software for all versions within Ring 3: User Applications may allow a denial of service. |
CVE-2026-20879 | — | — | — | 2026-05-12 | Out-of-bounds write for the Intel(R) Data Center Graphics Driver for VMware ESXi software before version 2.0.2 within Ring 1: Device Drivers may allow a denial of service. |
CVE-2026-20794 | — | — | — | 2026-05-12 | Buffer overflow for the Intel(R) Data Center Graphics Driver for VMware ESXi software before version 2.0.2 within Ring 1: Device Drivers may allow an escalation of privilege. |
CVE-2026-20772 | — | — | — | 2026-05-12 | Uncontrolled search path for some Intel(R) Connectivity Performance Suite software installers before version 50.25.1121.193 within Ring 3: User Applications may allow an escalation of privilege. |
CVE-2026-20754 | — | — | — | 2026-05-12 | Improper conditions check in some firmware for some Intel(R) NPU Drivers within Ring 1: Device Drivers may allow a denial of service. |
CVE-2026-20753 | — | — | — | 2026-05-12 | Integer overflow in the UEFI firmware for the Slim Bootloader may allow an escalation of privilege. |
CVE-2026-20751 | — | — | — | 2026-05-12 | Out-of-bounds read for the Intel(R) Data Center Graphics Driver for VMware ESXi software before version 2.0.2 within Ring 1: Device Drivers may allow a denial of service. |
CVE-2026-20738 | — | — | — | 2026-05-12 | Untrusted pointer dereference for some Intel(R) QuickAssist Adapter 8960 software before version 1.13 within Ring 3: User Applications may allow an escalation of privilege. |
CVE-2026-20718 | — | — | — | 2026-05-12 | Incorrect default permissions for some Intel(R) NPU Driver software installers before version 32.0.100.4511 within Ring 3: User Applications may allow an escalation of privilege. |
CVE-2025-36515 | — | — | — | 2026-05-12 | Uncontrolled search path for some AI Playground software before version 3.0.0 alpha within Ring 3: User Applications may allow an escalation of privilege. |
CVE-2025-36510 | — | — | — | 2026-05-12 | Improper buffer restrictions for some Display Virtualization for Windows OS driver software within Ring 2: Device Drivers may allow a denial of service. |
CVE-2025-35991 | — | — | — | 2026-05-12 | Improper initialization in the UEFI firmware for some Intel platforms within Ring 0: Bare Metal OS may allow an information disclosure. |
CVE-2025-35990 | — | — | — | 2026-05-12 | Improper input validation for some Intel Endpoint Management Assistant (EMA) software before version 1.14.5 within Ring 3: User Applications may allow an escalation of privilege. |
CVE-2025-35979 | — | — | — | 2026-05-12 | Exposure of sensitive information caused by shared microarchitectural predictor state that influences transient execution for some Intel(R) Processors within VMX non-root (guest) operation may allow an information disclosure. |
CVE-2025-35969 | — | — | — | 2026-05-12 | Uncontrolled search path for some Intel(R) Server Firmware Update Utility Software before version 16.0.12. |
CVE-2025-27723 | — | — | — | 2026-05-12 | Use after free for some Linux kernel driver for the Intel(R) Ethernet 800 series before version 2.3.14 within Ring 0: Kernel may allow a denial of service. |
Apple · 103 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-8587 | High | 8.8 | — | 2026-05-14 | Use after free in Extensions in Google Chrome on Mac prior to 148.0.7778.168 allowed an attacker who convinced a user to install a malicious extension to execute arbitrary code via a crafted Chrome Extension. |
CVE-2026-8522 | High | 8.8 | — | 2026-05-14 | Use after free in Downloads in Google Chrome on Mac prior to 148.0.7778.168 allowed a remote attacker to execute arbitrary code via a crafted HTML page. |
CVE-2026-8517 | High | 8.8 | — | 2026-05-14 | Object lifecycle issue in WebShare in Google Chrome on Mac prior to 148.0.7778.168 allowed a remote attacker who convinced a user to engage in specific UI gestures to execute arbitrary code via a crafted HTML page. |
CVE-2025-43524 | High | 8.8 | — | 2026-05-12 | An access issue was addressed with additional sandbox restrictions. |
CVE-2026-28995 | High | 8.8 | — | 2026-05-11 | A logic issue was addressed with improved restrictions. |
CVE-2026-28978 | High | 8.8 | — | 2026-05-11 | A permissions issue was addressed with additional restrictions. |
CVE-2026-28955 | High | 8.8 | — | 2026-05-11 | The issue was addressed with improved memory handling. |
CVE-2026-28947 | High | 8.8 | — | 2026-05-11 | A use-after-free issue was addressed with improved memory management. |
CVE-2026-28940 | High | 8.8 | — | 2026-05-11 | The issue was addressed with improved memory handling. |
CVE-2026-28923 | High | 8.8 | — | 2026-05-11 | A logging issue was addressed with improved data redaction. |
CVE-2026-28847 | High | 8.8 | — | 2026-05-11 | The issue was addressed with improved memory handling. |
CVE-2026-8569 | High | 8.3 | — | 2026-05-14 | Out of bounds write in Codecs in Google Chrome on Mac prior to 148.0.7778.168 allowed a remote attacker to potentially perform a sandbox escape via a crafted video file. |
CVE-2026-8525 | High | 8.3 | — | 2026-05-14 | Heap buffer overflow in ANGLE in Google Chrome on Mac prior to 148.0.7778.168 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. |
CVE-2026-28907 | High | 8.1 | — | 2026-05-11 | The issue was addressed with improved input validation. |
CVE-2026-28951 | High | 7.8 | — | 2026-05-11 | An authorization issue was addressed with improved state management. |
CVE-2026-28919 | High | 7.8 | — | 2026-05-11 | A consistency issue was addressed with improved state handling. |
CVE-2026-28915 | High | 7.8 | — | 2026-05-11 | A parsing issue in the handling of directory paths was addressed with improved path validation. |
CVE-2026-28840 | High | 7.8 | — | 2026-05-11 | A permissions issue was addressed with additional restrictions. |
CVE-2026-8585 | High | 7.5 | — | 2026-05-14 | Inappropriate implementation in Media in Google Chrome on iOS prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to perform an out of bounds memory read via a crafted HTML page. |
CVE-2025-46311 | High | 7.5 | — | 2026-05-12 | An inconsistent user interface issue was addressed with improved state management. |
CVE-2026-43668 | High | 7.5 | — | 2026-05-11 | A use after free issue was addressed with improved memory management. |
CVE-2026-43661 | High | 7.5 | — | 2026-05-11 | A buffer overflow issue was addressed with improved memory handling. |
CVE-2026-43660 | High | 7.5 | — | 2026-05-11 | A validation issue was addressed with improved logic. |
CVE-2026-43658 | High | 7.5 | — | 2026-05-11 | The issue was addressed with improved memory handling. |
CVE-2026-43654 | High | 7.5 | — | 2026-05-11 | The issue was addressed with improved memory handling. |
CVE-2026-43652 | High | 7.5 | — | 2026-05-11 | A permissions issue was addressed with additional restrictions. |
CVE-2026-39871 | High | 7.5 | — | 2026-05-11 | A path handling issue was addressed with improved logic. |
CVE-2026-39870 | High | 7.5 | — | 2026-05-11 | The issue was addressed with improved memory handling. |
CVE-2026-28991 | High | 7.5 | — | 2026-05-11 | An out-of-bounds read was addressed with improved bounds checking. |
CVE-2026-28990 | High | 7.5 | — | 2026-05-11 | The issue was addressed with improved memory handling. |
CVE-2026-28987 | High | 7.5 | — | 2026-05-11 | A logging issue was addressed with improved data redaction. |
CVE-2026-28986 | High | 7.5 | — | 2026-05-11 | A race condition was addressed with additional validation. |
CVE-2026-28983 | High | 7.5 | — | 2026-05-11 | A type confusion issue was addressed with improved checks. |
CVE-2026-28976 | High | 7.5 | — | 2026-05-11 | An information leakage was addressed with additional validation. |
CVE-2026-28974 | High | 7.5 | — | 2026-05-11 | This issue was addressed with improved checks to prevent unauthorized actions. |
CVE-2026-28969 | High | 7.5 | — | 2026-05-11 | A use after free issue was addressed with improved memory management. |
CVE-2026-28965 | High | 7.5 | — | 2026-05-11 | A privacy issue was addressed with improved checks. |
CVE-2026-28964 | High | 7.5 | — | 2026-05-11 | An inconsistent user interface issue was addressed with improved state management. |
CVE-2026-28962 | High | 7.5 | — | 2026-05-11 | This issue was addressed with improved access restrictions. |
CVE-2026-28959 | High | 7.5 | — | 2026-05-11 | A buffer overflow was addressed with improved bounds checking. |
CVE-2026-28954 | High | 7.5 | — | 2026-05-11 | A file quarantine bypass was addressed with additional checks. |
CVE-2026-28953 | High | 7.5 | — | 2026-05-11 | The issue was addressed with improved memory handling. |
CVE-2026-28952 | High | 7.5 | — | 2026-05-11 | An integer overflow was addressed with improved input validation. |
CVE-2026-28944 | High | 7.5 | — | 2026-05-11 | The issue was addressed with improved memory handling. |
CVE-2026-28943 | High | 7.5 | — | 2026-05-11 | A logging issue was addressed with improved data redaction. |
CVE-2026-28936 | High | 7.5 | — | 2026-05-11 | The issue was addressed with improved checks. |
CVE-2026-28930 | High | 7.5 | — | 2026-05-11 | A permissions issue was addressed with additional restrictions. |
CVE-2026-28929 | High | 7.5 | — | 2026-05-11 | A logic issue was addressed with improved checks. |
CVE-2026-28925 | High | 7.5 | — | 2026-05-11 | A buffer overflow was addressed with improved bounds checking. |
CVE-2026-28924 | High | 7.5 | — | 2026-05-11 | A race condition was addressed with improved handling of symbolic links. |
CVE-2026-28913 | High | 7.5 | — | 2026-05-11 | The issue was addressed with improved memory handling. |
CVE-2026-28908 | High | 7.5 | — | 2026-05-11 | A denial of service issue was addressed by removing the vulnerable code. |
CVE-2026-28906 | High | 7.5 | — | 2026-05-11 | This issue was addressed through improved state management. |
CVE-2026-28905 | High | 7.5 | — | 2026-05-11 | The issue was addressed with improved memory handling. |
CVE-2026-28904 | High | 7.5 | — | 2026-05-11 | The issue was addressed with improved memory handling. |
CVE-2026-28883 | High | 7.5 | — | 2026-05-11 | A use-after-free issue was addressed with improved memory management. |
CVE-2026-28873 | High | 7.5 | — | 2026-05-11 | This issue was addressed with additional entitlement checks. |
CVE-2026-28872 | High | 7.5 | — | 2026-05-11 | A resource exhaustion issue was addressed with improved input validation. |
CVE-2026-28860 | High | 7.5 | — | 2026-05-11 | The issue was addressed with improved input validation. |
CVE-2026-28848 | High | 7.5 | — | 2026-05-11 | A buffer overflow was addressed with improved bounds checking. |
CVE-2026-28846 | High | 7.5 | — | 2026-05-11 | A buffer overflow was addressed with improved bounds checking. |
CVE-2026-43656 | High | 7.3 | — | 2026-05-11 | An out-of-bounds write issue was addressed with improved input validation. |
CVE-2026-43655 | High | 7.3 | — | 2026-05-11 | An out-of-bounds read was addressed with improved bounds checking. |
CVE-2026-28941 | High | 7.1 | — | 2026-05-11 | The issue was addressed with improved checks. |
CVE-2026-28972 | Medium | 6.5 | — | 2026-05-11 | An out-of-bounds write issue was addressed with improved input validation. |
CVE-2026-28956 | Medium | 6.5 | — | 2026-05-11 | A memory corruption issue was addressed with improved input validation. |
CVE-2026-28946 | Medium | 6.5 | — | 2026-05-11 | A use-after-free issue was addressed with improved memory management. |
CVE-2026-28942 | Medium | 6.5 | — | 2026-05-11 | A use-after-free issue was addressed with improved memory management. |
CVE-2026-28922 | Medium | 6.5 | — | 2026-05-11 | This issue was addressed through improved state management. |
CVE-2026-28920 | Medium | 6.5 | — | 2026-05-11 | An information leakage was addressed with additional validation. |
CVE-2026-28918 | Medium | 6.5 | — | 2026-05-11 | An out-of-bounds access issue was addressed with improved bounds checking. |
CVE-2026-28903 | Medium | 6.5 | — | 2026-05-11 | The issue was addressed with improved memory handling. |
CVE-2026-28902 | Medium | 6.5 | — | 2026-05-11 | The issue was addressed with improved memory handling. |
CVE-2026-43666 | Medium | 6.2 | — | 2026-05-11 | An out-of-bounds write issue was addressed with improved bounds checking. |
CVE-2026-43653 | Medium | 6.2 | — | 2026-05-11 | The issue was addressed with improved memory handling. |
CVE-2026-28985 | Medium | 6.2 | — | 2026-05-11 | A null pointer dereference was addressed with improved input validation. |
CVE-2026-28977 | Medium | 6.2 | — | 2026-05-11 | The issue was addressed with improved bounds checks. |
CVE-2026-28897 | Medium | 6.2 | — | 2026-05-11 | A buffer overflow was addressed with improved input validation. |
CVE-2026-28996 | Medium | 5.5 | — | 2026-05-11 | A race condition was addressed with additional validation. |
CVE-2026-28993 | Medium | 5.5 | — | 2026-05-11 | This issue was addressed by adding an additional prompt for user consent. |
CVE-2026-28988 | Medium | 5.5 | — | 2026-05-11 | A permissions issue was addressed with additional restrictions. |
CVE-2026-28958 | Medium | 5.5 | — | 2026-05-11 | This issue was addressed with improved data protection. |
CVE-2026-28914 | Medium | 5.5 | — | 2026-05-11 | A logic issue was addressed with improved file handling. |
CVE-2026-20696 | Medium | 5.5 | — | 2026-05-11 | An authorization issue was addressed with improved state management. |
CVE-2026-28819 | Medium | 5.4 | — | 2026-05-11 | An out-of-bounds write issue was addressed with improved bounds checking. |
CVE-2026-28994 | Medium | 5.3 | — | 2026-05-11 | A use after free issue was addressed with improved memory management. |
CVE-2026-28967 | Medium | 4.9 | — | 2026-05-11 | A denial-of-service issue was addressed with improved input validation. |
CVE-2026-8565 | Medium | 4.7 | — | 2026-05-14 | Inappropriate implementation in Downloads in Google Chrome on Mac prior to 148.0.7778.168 allowed an attacker who convinced a user to install a malicious extension to perform UI spoofing via a crafted Chrome Extension. |
CVE-2026-43659 | Medium | 4.7 | — | 2026-05-11 | A race condition was addressed with additional validation. |
CVE-2026-28992 | Medium | 4.7 | — | 2026-05-11 | A memory corruption vulnerability was addressed with improved locking. |
CVE-2026-28830 | Medium | 4.7 | — | 2026-05-11 | A race condition was addressed with additional validation. |
CVE-2026-28963 | Medium | 4.6 | — | 2026-05-11 | A privacy issue was addressed by removing the vulnerable code. |
CVE-2026-28961 | Medium | 4.6 | — | 2026-05-11 | This issue was addressed with improved checks. |
CVE-2026-8560 | Medium | 4.3 | — | 2026-05-14 | Heap buffer overflow in SwiftShader in Google Chrome on Mac and iOS prior to 148.0.7778.168 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. |
CVE-2026-39869 | Medium | 4.3 | — | 2026-05-11 | The issue was addressed with improved memory handling. |
CVE-2026-28971 | Medium | 4.3 | — | 2026-05-11 | The issue was addressed with improved UI handling. |
CVE-2026-28917 | Medium | 4.3 | — | 2026-05-11 | The issue was addressed with improved input validation. |
CVE-2026-28901 | Medium | 4.3 | — | 2026-05-11 | The issue was addressed with improved memory handling. |
CVE-2026-8584 | Medium | 4.2 | — | 2026-05-14 | Inappropriate implementation in Views in Google Chrome on iOS prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to perform UI spoofing via a crafted HTML page. |
CVE-2026-8564 | Medium | 4.2 | — | 2026-05-14 | Incorrect security UI in Downloads in Google Chrome on Android and Mac prior to 148.0.7778.168 allowed a remote attacker to perform UI spoofing via a crafted HTML page. |
CVE-2026-28957 | Low | 3.3 | — | 2026-05-11 | An issue with app access to camera metadata was addressed with improved logic. |
CVE-2026-28910 | Low | 3.3 | — | 2026-05-11 | This issue was addressed with improved permissions checking. |
CVE-2026-8536 | Low | 3.1 | — | 2026-05-14 | Insufficient validation of untrusted input in ReadingMode in Google Chrome on Mac prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to bypass site Isolation via a crafted HTML page. |
Open-webui · 59 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44551 | Critical | 9.1 | — | 2026-05-15 | Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. |
CVE-2026-45672 | High | 8.8 | — | 2026-05-15 | Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. |
CVE-2026-45315 | High | 8.7 | — | 2026-05-15 | Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. |
CVE-2026-44552 | High | 8.7 | — | 2026-05-15 | Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. |
CVE-2026-45401 | High | 8.5 | — | 2026-05-15 | Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. |
CVE-2026-45400 | High | 8.5 | — | 2026-05-15 | Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. |
CVE-2026-45331 | High | 8.5 | — | 2026-05-15 | Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. |
CVE-2026-44570 | High | 8.3 | — | 2026-05-15 | Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. |
CVE-2026-45665 | High | 8.1 | — | 2026-05-15 | Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. |
CVE-2026-45301 | High | 8.1 | — | 2026-05-15 | Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. |
CVE-2026-44565 | High | 8.1 | — | 2026-05-15 | Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. |
CVE-2026-45402 | High | 8.1 | — | 2026-05-15 | Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. |
CVE-2026-45675 | High | 8.1 | — | 2026-05-15 | Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. |
CVE-2026-44554 | High | 8.1 | — | 2026-05-15 | Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. |
CVE-2026-44553 | High | 8.1 | — | 2026-05-15 | Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. |
CVE-2026-45671 | High | 8.0 | — | 2026-05-15 | Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. |
CVE-2026-45338 | High | 7.7 | — | 2026-05-15 | Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. |
CVE-2026-45303 | High | 7.7 | — | 2026-05-15 | Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. |
CVE-2026-44555 | High | 7.6 | — | 2026-05-15 | Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. |
CVE-2026-45398 | High | 7.5 | — | 2026-05-15 | Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. |
CVE-2026-44567 | High | 7.3 | — | 2026-05-15 | Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. |
CVE-2026-44566 | High | 7.3 | — | 2026-05-15 | Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. |
CVE-2026-44549 | High | 7.3 | — | 2026-05-15 | Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. |
CVE-2026-44721 | High | 7.3 | — | 2026-05-15 | Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. |
CVE-2026-45395 | High | 7.2 | — | 2026-05-15 | Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. |
CVE-2026-45350 | High | 7.1 | — | 2026-05-15 | Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. |
CVE-2026-44569 | High | 7.1 | — | 2026-05-15 | Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. |
CVE-2026-45399 | High | 7.1 | — | 2026-05-15 | Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. |
CVE-2026-45349 | High | 7.1 | — | 2026-05-15 | Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. |
CVE-2026-44556 | High | 7.1 | — | 2026-05-15 | Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. |
CVE-2026-45667 | Medium | 6.5 | — | 2026-05-15 | Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. |
CVE-2026-45666 | Medium | 6.5 | — | 2026-05-15 | Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. |
CVE-2026-45351 | Medium | 6.5 | — | 2026-05-15 | Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. |
CVE-2026-45345 | Medium | 6.5 | — | 2026-05-15 | Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. |
CVE-2026-44571 | Medium | 6.5 | — | 2026-05-15 | Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. |
CVE-2026-45339 | Medium | 6.5 | — | 2026-05-15 | Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. |
CVE-2026-44562 | Medium | 6.5 | — | 2026-05-15 | Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. |
CVE-2026-44560 | Medium | 6.5 | — | 2026-05-15 | Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. |
CVE-2026-45314 | Medium | 6.1 | — | 2026-05-15 | Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. |
CVE-2026-45365 | Medium | 5.4 | — | 2026-05-15 | Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. |
CVE-2026-45346 | Medium | 5.4 | — | 2026-05-15 | Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. |
CVE-2026-45318 | Medium | 5.4 | — | 2026-05-15 | Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. |
CVE-2026-45299 | Medium | 5.4 | — | 2026-05-15 | Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. |
CVE-2026-45396 | Medium | 5.4 | — | 2026-05-15 | Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. |
CVE-2026-44564 | Medium | 5.4 | — | 2026-05-15 | Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. |
CVE-2026-44563 | Medium | 5.4 | — | 2026-05-15 | Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. |
CVE-2026-44561 | Medium | 5.4 | — | 2026-05-15 | Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. |
CVE-2026-44558 | Medium | 5.4 | — | 2026-05-15 | Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. |
CVE-2026-45397 | Medium | 5.3 | — | 2026-05-15 | Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. |
CVE-2026-44550 | Medium | 5.0 | — | 2026-05-15 | Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. |
CVE-2026-44568 | Medium | 4.8 | — | 2026-05-15 | Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. |
CVE-2026-45317 | Medium | 4.6 | — | 2026-05-15 | Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. |
CVE-2026-45347 | Medium | 4.3 | — | 2026-05-15 | Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. |
CVE-2026-45387 | Medium | 4.3 | — | 2026-05-15 | Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. |
CVE-2026-45386 | Medium | 4.3 | — | 2026-05-15 | Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. |
CVE-2026-45385 | Medium | 4.3 | — | 2026-05-15 | Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. |
CVE-2026-44559 | Medium | 4.3 | — | 2026-05-15 | Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. |
CVE-2026-44557 | Medium | 4.3 | — | 2026-05-15 | Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. |
CVE-2026-45316 | Low | 3.5 | — | 2026-05-15 | Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. |
F5 · 51 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-41225 | Critical | 9.1 | — | 2026-05-13 | A vulnerability exists in iControl REST where a highly privileged, authenticated attacker with at least the Manager role can create configuration objects that allow running arbitrary commands. |
CVE-2026-41957 | High | 8.8 | — | 2026-05-13 | An authenticated remote code execution vulnerability through undisclosed vectors exists in the BIG-IP and BIG-IQ Configuration utility. |
CVE-2026-42930 | High | 8.7 | — | 2026-05-13 | When running in Appliance mode, an authenticated attacker assigned the 'Administrator' role may be able to bypass Appliance mode restrictions on a BIG-IP system. |
CVE-2026-42924 | High | 8.7 | — | 2026-05-13 | An authenticated attacker with the Resource Administrator or Administrator role can create SNMP configuration objects through iControl SOAP resulting in privilege escalation. Note: Software versions which have reached End of Technical Sup… |
CVE-2026-42406 | High | 8.7 | — | 2026-05-13 | A vulnerability exists in BIG-IP and BIG-IQ systems where a highly privileged, authenticated attacker with at least the Certificate Manager role can modify configuration objects that allow running arbitrary commands. Note: Software ver… |
CVE-2026-41953 | High | 8.7 | — | 2026-05-13 | A vulnerability exists in BIG-IP systems where a highly privileged, authenticated attacker with at least the Resource Administrator role can modify configuration objects resulting in privilege escalation. Note: Software versions which hav… |
CVE-2026-40698 | High | 8.7 | — | 2026-05-13 | A vulnerability exists in BIG-IP and BIG-IQ systems where a highly privileged, authenticated attacker with at least the Resource Administrator role can create SNMP configuration objects through iControl REST or the TMOS shell (tmsh) result… |
CVE-2026-40631 | High | 8.7 | — | 2026-05-13 | An authenticated attacker with the Resource Administrator or Administrator role can modify configuration objects through iControl SOAP resulting in privilege escalation. Note: Software versions which have reached End of Technical Support… |
CVE-2026-40061 | High | 8.7 | — | 2026-05-13 | When BIG-IP DNS is provisioned, a vulnerability exists in an undisclosed iControl REST and BIG-IP TMOS Shell (tmsh) command that may allow an authenticated attacker with the Resource Administrator or Administrator role to execute arbitrary… |
CVE-2026-34176 | High | 8.7 | — | 2026-05-13 | When running in Appliance mode, an authenticated remote command injection vulnerability exists in an undisclosed iControl REST endpoint. |
CVE-2026-32673 | High | 8.7 | — | 2026-05-13 | A vulnerability exists in BIG-IP scripted monitors that may allow an authenticated attacker with the Resource Administrator or Administrator role to execute arbitrary system commands with higher privileges. |
CVE-2026-32643 | High | 8.7 | — | 2026-05-13 | A vulnerability exists in BIG-IP and BIG-IQ systems where a highly privileged, authenticated attacker with at least the Certificate Manager role can modify configuration objects that allow running arbitrary commands. Note: Software versio… |
CVE-2026-42945 | High | 8.1 | — | 2026-05-13 | NGINX Plus and NGINX Open Source have a vulnerability in the ngx_http_rewrite_module module. |
CVE-2026-20916 | High | 8.1 | — | 2026-05-13 | An authenticated iControl REST user with low privileges can create or modify arbitrary files through an undisclosed iControl REST endpoint on the BIG-IQ system. |
CVE-2026-41217 | High | 7.9 | — | 2026-05-13 | A vulnerability exists in an undisclosed BIG-IP TMOS Shell (tmsh) command that may allow an authenticated attacker with resource administrator or administrator role to execute arbitrary system commands with higher privileges. |
CVE-2026-42920 | High | 7.5 | — | 2026-05-13 | When a Client SSL profile is configured with Allow Dynamic Record Sizing on a UDP virtual server, undisclosed traffic can cause the Traffic Management Microkernel (TMM) to terminate. |
CVE-2026-42409 | High | 7.5 | — | 2026-05-13 | When an HTTP/2 profile and an iRule containing the HTTP::redirect or HTTP::respond command are configured on a virtual server, undisclosed requests can cause the Traffic Management Microkernel (TMM) process to terminate. Note: Software ve… |
CVE-2026-41956 | High | 7.5 | — | 2026-05-13 | When a classification profile is configured on a UDP virtual server, undisclosed requests can cause the Traffic Management Microkernel (TMM) to terminate. Note: Software versions which have reached End of Technical Support (EoTS) are not… |
CVE-2026-41227 | High | 7.5 | — | 2026-05-13 | On an HTTP/2 virtual server with Layer 7 DoS Protection configured, undisclosed traffic can result in an increase in memory consumption causing the Traffic Management Microkernel (TMM) process to terminate. Note: Software versions which h… |
CVE-2026-41218 | High | 7.5 | — | 2026-05-13 | When BIG-IP PEM iRules are configured on a virtual server (iRules using commands starting with CLASSIFICATION::, CLASSIFY::, PEM::, PSC::, and the urlcatquery command), undisclosed traffic can cause the Traffic Management Microkernel (TMM)… |
CVE-2026-40629 | High | 7.5 | — | 2026-05-13 | When SSL profiles are configured on a virtual server, undisclosed traffic can cause the virtual server to stop processing new client connections. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated… |
CVE-2026-40618 | High | 7.5 | — | 2026-05-13 | When an SSL profile is configured on a virtual server on BIG-IP Virtual Edition (VE) without Intel QuickAssist Technology (QAT) or on BIG-IP hardware platforms with the database variable crypto.hwacceleration set to disabled, undisclosed t… |
CVE-2026-40423 | High | 7.5 | — | 2026-05-13 | When a SIP profile is configured on a virtual server, undisclosed traffic can cause the Traffic Management Microkernel (TMM) to terminate. |
CVE-2026-40067 | High | 7.5 | — | 2026-05-13 | When a BIG-IP APM access policy is configured on a virtual server, undisclosed traffic can cause the apmd process to terminate. |
CVE-2026-40060 | High | 7.5 | — | 2026-05-13 | When a BIG-IP Advanced WAF or ASM security policy is configured on a virtual server, undisclosed requests can cause the bd process to terminate. Note: Software versions which have reached End of Technical Support (EoTS) are not evalu… |
CVE-2026-39458 | High | 7.5 | — | 2026-05-13 | When a BIG-IP DNS profile enabled with DNS cache is configured on a virtual server, undisclosed traffic can cause the Traffic Management Microkernel (TMM) to terminate. Note: Software versions which have reached End of Technical Support (… |
CVE-2026-39455 | High | 7.5 | — | 2026-05-13 | When the BIG-IP Configuration utility is configured to use Lightweight Directory Access Protocol (LDAP) authentication, undisclosed traffic can cause the httpd process to exhaust the available file descriptors. Note: Software versions whi… |
CVE-2026-39459 | High | 7.2 | — | 2026-05-13 | A vulnerability exists in iControl REST and the TMOS Shell (tmsh) where a highly privileged, authenticated attacker with at least the Manager role can create configuration objects that allow running arbitrary commands. |
CVE-2026-24464 | Medium | 6.8 | — | 2026-05-13 | When running in Appliance mode, a directory traversal vulnerability exists in an undisclosed iControl REST endpoint that may allow an authenticated attacker with administrator role privileges to cross a security boundary and delete files. … |
CVE-2026-42919 | Medium | 6.7 | — | 2026-05-13 | A vulnerability exists in BIG-IP systems that may allow an authenticated attacker with administrative access to escalate their privileges. |
CVE-2026-42946 | Medium | 6.5 | — | 2026-05-13 | A vulnerability exists in the ngx_http_scgi_module and ngx_http_uwsgi_module modules that may result in excessive memory allocation or an over-read of data. |
CVE-2026-42937 | Medium | 6.5 | — | 2026-05-13 | Incorrect permission assignment vulnerabilities exist in BIG-IP and BIG-IQ TMOS Shell (tmsh) arp and ndp commands, and in BIG-IP iControl REST. |
CVE-2026-42781 | Medium | 6.5 | — | 2026-05-13 | When embedded Packet Velocity Acceleration (ePVA) acceleration is configured, undisclosed local ethernet traffic can cause an increase in ePVA and Traffic Management Microkernel (TMM) resource utilization. Note: Software versions which ha… |
CVE-2026-41959 | Medium | 6.5 | — | 2026-05-13 | Incorrect permission assignment vulnerabilities exist in BIG-IP and BIG-IQ TMOS Shell (tmsh) network diagnostics commands and in BIG-IP iControl REST. |
CVE-2026-41219 | Medium | 6.5 | — | 2026-05-13 | An improper sanitization vulnerability exists in the BIG-IP QKView utility that allows a low-privileged attacker to read sensitive information from a QKView file. Note: Software versions which have reached End of Technical Support (EoT… |
CVE-2026-40699 | Medium | 6.5 | — | 2026-05-13 | A vulnerability exists in the undisclosed pages in the Configuration utility that may allow a low-privileged authenticated attacker to access to undisclosed sensitive information. Note: Software versions which have reached End of Technica… |
CVE-2026-40462 | Medium | 6.5 | — | 2026-05-13 | Incorrect permission assignment vulnerabilities exist in iControl REST and TMOS shell (tmsh) undisclosed command which may allow an authenticated attacker to view sensitive information. Note: Software versions which have reached End of Te… |
CVE-2026-40460 | Medium | 6.5 | — | 2026-05-13 | When NGINX Plus or NGINX Open Source are configured to use the HTTP/3 QUIC module, an attacker may be able to spoof their source IP address allowing for bypass of authorization or bypass of rate limiting. Note: Software versions which hav… |
CVE-2026-35062 | Medium | 6.5 | — | 2026-05-13 | An authenticated iControl SOAP user may be able to obtain information of other accounts. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated. |
CVE-2026-42926 | Medium | 5.8 | — | 2026-05-13 | When NGINX Open Source is configured to proxy HTTP/2 traffic by setting proxy_http_version to 2, and also uses proxy_set_body, an attacker may be able to inject frame headers and payload bytes to the upstream peer. Note: Software versions… |
CVE-2026-40703 | Medium | 5.4 | — | 2026-05-13 | A cross-site request forgery (CSRF) vulnerability exists in the dashboard of the BIG-IP Configuration utility. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated. |
CVE-2026-40435 | Medium | 5.3 | — | 2026-05-13 | When configured, IP-based access restrictions for httpd do not cover all endpoints, which may allow connections from blocked addresses. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated. |
CVE-2026-34019 | Medium | 5.3 | — | 2026-05-13 | When Bidirectional Forwarding Detection (BFD) is configured in Static and Dynamic routing protocols, undisclosed traffic can cause the Traffic Management Microkernel (TMM) to stop processing BFD packets and cause the configured routing pro… |
CVE-2026-42780 | Medium | 4.9 | — | 2026-05-13 | A directory traversal vulnerability exists in BIG-IP SSL Orchestrator that allows an authenticated attacker with high privilege to overwrite, delete or corrupt arbitrary local files. |
CVE-2026-42063 | Medium | 4.9 | — | 2026-05-13 | A vulnerability exists in iControl SOAP where an authenticated attacker with the Resource Administrator or Administrator role can download sensitive files. Note: Software versions which have reached End of Technical Support (EoTS) are not… |
CVE-2026-41954 | Medium | 4.9 | — | 2026-05-13 | Sensitive information disclosure vulnerability exists in the undisclosed iControl REST endpoint and TMOS Shell (tmsh) command which may allow an authenticated attacker with resource administrator role privileges to view sensitive informati… |
CVE-2026-42934 | Medium | 4.8 | — | 2026-05-13 | NGINX Plus and NGINX Open Source have a vulnerability in the ngx_http_charset_module module. |
CVE-2026-40701 | Medium | 4.8 | — | 2026-05-13 | NGINX Plus and NGINX Open Source have a vulnerability in the ngx_http_ssl_module module when the ssl_verify_client directive is set to "on" or "optional," and the ssl_ocsp directive is set to "on" or the leaf parameters are configured with… |
CVE-2026-42408 | Medium | 4.4 | — | 2026-05-13 | When BIG-IP DNS is provisioned, a vulnerability exists in an undisclosed TMOS Shell (tmsh) command that may allow a highly privileged authenticated attacker to view sensitive information. Note: Software versions which have reached End of… |
CVE-2026-28758 | Medium | 4.4 | — | 2026-05-13 | When BIG-IP DNS is provisioned, a vulnerability exists in the gtm_add and bigip_add iControl REST commands that return the ssh-password parameter in cleartext in the iControl REST response and is also logged in the audit log. |
CVE-2026-42058 | Medium | 4.3 | — | 2026-05-13 | An authenticated attacker's undisclosed requests to BIG-IP iControl REST can lead to an information leak of BIG-IP local user account names. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated. |
Amd · 48 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-36333 | High | 7.8 | — | 2026-05-15 | A DLL hijacking vulnerability in the AMD Cleanup Utility could allow an attacker to achieve privilege escalation potentially resulting in arbitrary code execution. |
CVE-2025-54518 | High | 7.0 | — | 2026-05-15 | Improper isolation of shared resources within the CPU operation cache on Zen 2-based products could allow an attacker to corrupt instructions executed at a different privilege level, potentially resulting in privilege escalation. |
CVE-2026-0481 | — | — | — | 2026-05-15 | Unrestricted IP address binding in the AMD Device Metrics Exporter (ROCm ecosystem) could allow a remote attacker to perform unauthorized changes to the GPU configuration, potentially resulting in loss of availability |
CVE-2025-52532 | — | — | — | 2026-05-15 | A race condition in the MxGPU-Virtualization driver’s ioctl path caused by concurrent unsynchronized access to the global variable amdgv_cmd in an unlocked ioctl handler could be exploited by an attacker to trigger a heap-based buffer over… |
CVE-2024-36334 | — | — | — | 2026-05-15 | Improper verification of cryptographic signature in the Radeon RGB tool could allow a malicious file placed in the installation directory to be run with elevated privileges potentially leading to arbitrary code execution. |
CVE-2024-36323 | — | — | — | 2026-05-15 | Improper isolation of VCN-JPEG HW register space could allow a malicious Guest Virtual Machine (VM) or a process to perform unauthorized access to the register space of the JPEG cores assigned a victim VM/process, potentially gaining arbit… |
CVE-2024-21950 | — | — | — | 2026-05-15 | An out of bounds read in the remote management firmware could allow a privileged attacker read a limited section of memory outside of established bounds potentially resulting in loss of confidentiality or availability. |
CVE-2026-0428 | — | — | — | 2026-05-15 | Insufficient parameter sanitization in TEE SOC Driver could allow an attacker to issue a malformed DRV_SOC_CMD_ID_SRIOV_COPY_VF_CHIPLET_REGS to write invalid data to a remote Die, potentially resulting in unexpected behavior. |
CVE-2026-0427 | — | — | — | 2026-05-15 | Improper cleanup of shared register resources in GPU firmware could allow an admin-privileged attacker from a Guest Virtual machine (VM) to access these shared resources from another Guest VM, potentially resulting in the loss of confident… |
CVE-2025-66664 | — | — | — | 2026-05-15 | Insufficient parameter sanitization in AMD Secure Processor (ASP) TEE SOC Driver could allow an attacker to issue a malformed DRV_SOC_CMD_ID_LOAD_GFX_IP_FW SR-IOV command to cause out-of-bounds read, potentially resulting in SOC Driver mem… |
CVE-2025-66660 | — | — | — | 2026-05-15 | Insufficient parameter sanitization in TEE SOC Driver could allow an attacker to issue a malformed DRV_SOC_CMD_ID_SRIOV_CHECK_TA_COMPAT to cause incorrect shared memory mapping, potentially resulting in unexpected behavior. |
CVE-2025-54517 | — | — | — | 2026-05-15 | Out of bounds write in AMD AMDGV_CMD_GET_DIAG_DATA ioctl handler could allow a local user to escalate privileges via remote code execution. |
CVE-2025-54511 | — | — | — | 2026-05-15 | Improper handling of insufficient privileges in the AMD Secure Processor (ASP) could allow an attacker to provide an input value to a function without sufficient privileges and successfully write data, potentially resulting in loss of inte… |
CVE-2025-48516 | — | — | — | 2026-05-15 | Insecure default configuration state of DDR5 memory module by AGESA Bootloader Firmware could allow an attacker with local user privilege to abuse the unprotected PMIC interface to create a permanent denial of service condition or affect t… |
CVE-2025-48513 | — | — | — | 2026-05-15 | Use of uninitialized resource within the AMD Platform Management Framework (PMF) could allow an attacker to read a uninitialized kernel memory resulting in loss of confidentiality or availability. |
CVE-2025-29944 | — | — | — | 2026-05-15 | A buffer overflow vulnerability within AMD Sensor Fusion Hub Driver can allow a local attacker to write out of bounds, potentially resulting in denial of service or crash |
CVE-2025-29938 | — | — | — | 2026-05-15 | An unchecked return value within the AMD Platform Management Framework (PMF) could allow an attacker to write to an arbitrary memory address resulting in denial of service or arbitrary code execution. |
CVE-2025-29937 | — | — | — | 2026-05-15 | An out of bounds read within the AMD Platform Management Framework (PMF) could allow an attacker to trigger a read of an arbitrary memory location potentially resulting in loss of availability or confidentiality. |
CVE-2025-29936 | — | — | — | 2026-05-15 | Improper input validation within the AMD Platform Management Framework (PMF) could allow an attacker to unmap arbitrary memory pages potentially impacting integrity and availability, or allowing privilege escalation resulting in loss of co… |
CVE-2025-29935 | — | — | — | 2026-05-15 | An out of bounds write within the AMD Platform Management Framework (PMF) could allow an attacker to execute arbitrary code at an elevated privilege level potentially leading to loss of confidentiality integrity, or availability. |
CVE-2025-0044 | — | — | — | 2026-05-15 | An out-of-bounds read in power management firmware by a malicious local attacker with low privileges could potentially lead to a partial loss of confidentiality and availability. |
CVE-2025-0040 | — | — | — | 2026-05-15 | Improper access control between the Joint Test Action Group (JTAG) and Advanced Extensible Interface (AXI) could allow an attacker with physical access to read or overwrite the contents of cross-chip debug (XCD) registers potentially resul… |
CVE-2025-0028 | — | — | — | 2026-05-15 | An unchecked return value within the AMD Platform Management Framework (PMF) could allow an attacker to read or modify an arbitrary address potentially resulting in loss of confidentiality, integrity, or availability. |
CVE-2024-36332 | — | — | — | 2026-05-15 | Improper isolation of GPU HW register space could allow a privileged attacker in malicious Guest Virtual Machine (VM) to perform unauthorized access to specific victim range of GPU MMIO register space, potentially causing the host OS to re… |
CVE-2024-21962 | — | — | — | 2026-05-15 | Improper Input Validation in the AMD RAID driver could allow an attacker to point to an arbitrary memory location potentially resulting in privilege escalation and arbitrary code execution. |
CVE-2023-31317 | — | — | — | 2026-05-15 | Improper restriction of operations within the bounds of a memory buffer in the AMD secure processer (ASP) could allow an attacker to read or write to protected memory potentially resulting in arbitrary code execution. |
CVE-2023-31316 | — | — | — | 2026-05-15 | Improperly preserved integrity of hardware configuration state during a power save/restore operation in the AMD Secure Processor (ASP) could allow an attacker with the ability to write outside the trusted memory range (TMR) to change the e… |
CVE-2023-31309 | — | — | — | 2026-05-15 | Improper validation in Power Management Firmware (PMFW) may allow an attacker with privileges to pass malformed workload arguments when exporting table data from SMU to DRAM potentially resulting in a loss of confidentiality and/or availab… |
CVE-2022-23826 | — | — | — | 2026-05-15 | A TOCTOU (Time-Of-Check to Time-Of-Use) in the graphics interface may allow an attacker to load registers repeatedly creating a race condition potentially leading to a loss of integrity. |
CVE-2021-26380 | — | — | — | 2026-05-15 | A compromised Trusted OS (TOS) driver could issue a malformed call that could potentially allow memory access outside the intended range resulting in loss of integrity. |
CVE-2026-0438 | — | — | — | 2026-05-15 | A System Management Mode (SMM) handler could perform a callout to code located in non-SMM/untrusted memory. |
CVE-2026-0432 | — | — | — | 2026-05-15 | Incorrect default permissions in the installation directory for the AMD chipset driver could allow an attacker to achieve privilege escalation resulting in arbitrary code execution. |
CVE-2025-52540 | — | — | — | 2026-05-15 | An improper input validation vulnerability within the AMD Platform Management Framework (PMF) Driver can allow a local attacker to write Out-of-Bounds, potentially resulting in privilege escalation. |
CVE-2025-48521 | — | — | — | 2026-05-15 | Improper input validation in the AMD Secure Processor (ASP) PCI driver could allow a local attacker to trigger a Use-After-Free (UAF) condition, potentially resulting in a loss of platform integrity or crash. |
CVE-2025-48520 | — | — | — | 2026-05-15 | An improper input validation vulnerability within the AMD Platform Management Framework (PMF) driver can allow a local attacker to read Out-of-Bounds potentially resulting in information disclosure or a crash |
CVE-2025-48519 | — | — | — | 2026-05-15 | An improper input validation vulnerability within the AMD Platform Management Framework (PMF) driver can allow a local attacker to read or write Out-of-Bounds, potentially resulting in privilege escalation |
CVE-2025-48512 | — | — | — | 2026-05-15 | Incorrect default permissions in the installation directory for the AMD general-purpose input/output controller (GPIO) could allow an attacker to achieve privilege escalation resulting in arbitrary code execution. |
CVE-2025-0045 | — | — | — | 2026-05-15 | Improper Input validation in the AMD Secure Processor (ASP) PCI driver may allow a local attacker to create a buffer overflow condition, potentially resulting in a crash or denial of service |
CVE-2024-36345 | — | — | — | 2026-05-15 | Improper input validation in the AMD OverDrive (AOD) System Management Mode (SMM) module could allow a privileged attacker to perform an out-of-bounds read, potentially resulting in loss of confidentiality. |
CVE-2025-62628 | — | — | — | 2026-05-14 | Unsafe OpenSSL initialization within some AMD optional tools may allow a local user-privileged attacker to inject a malicious DLL, potentially resulting in arbitrary code execution. |
CVE-2025-62625 | — | — | — | 2026-05-14 | Improper privilege management in the KVM key download component could allow an attacker to swap tokens and download sensitive keys, potentially resulting in unauthorized access to privileged resources and loss of confidentiality. |
CVE-2025-62619 | — | — | — | 2026-05-14 | Missing authentication in the KVM key download endpoint could allow an unauthenticated attacker with knowledge of the exposed URL to retrieve sensitive keys, potentially leading to loss of confidentiality. |
CVE-2025-62627 | — | — | — | 2026-05-13 | An untrusted pointer dereference in the ionic cloud driver for VMWare ESXi could allow an attacker with an unprivileged VM to read kernel memory or co-located guest VM memory, potentially resulting in loss of confidentiality or availabilit… |
CVE-2025-62624 | — | — | — | 2026-05-13 | A heap-based buffer overflow in the ionic cloud driver for VMware ESXi could allow an attacker to achieve privilege escalation, potentially resulting in arbitrary code execution. |
CVE-2025-62623 | — | — | — | 2026-05-13 | A heap-based buffer overflow in the ionic cloud driver for VMware ESXi could allow an attacker to achieve privilege escalation, potentially resulting in arbitrary code execution. |
CVE-2025-61972 | — | — | — | 2026-05-13 | Missing lock bit protection for NBIO registers could allow a local admin-privileged attacker to gain arbitrary System Management Network (SMN) access, potentially resulting in arbitrary code execution in AMD Secure Processor (ASP) and loss… |
CVE-2025-61971 | — | — | — | 2026-05-13 | Missing lock bit protection for NBIO registers could allow a local admin-privileged attacker to modify MMIO routing configurations, potentially resulting in loss of SEV-SNP guest integrity. |
CVE-2024-36315 | — | — | — | 2026-05-13 | Improper enforcement of the LFENCE serialization property may allow an attacker to bypass speculation barriers and potentially disclose sensitive information, potentially resulting in loss of confidentiality. |
Adobe · 43 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-34659 | Critical | 9.6 | — | 2026-05-12 | Adobe Connect versions 2025.9.15, 2025.8.157 and earlier are affected by a Deserialization of Untrusted Data vulnerability that could result in arbitrary code execution in the context of the current user. |
CVE-2026-34660 | Critical | 9.3 | — | 2026-05-12 | Adobe Connect versions 2025.9.15, 2025.8.157 and earlier are affected by an Incorrect Authorization vulnerability that could result in arbitrary code execution in the context of the current user. |
CVE-2026-34686 | High | 8.7 | — | 2026-05-12 | Adobe Commerce versions 2.4.9-beta1, 2.4.8-p4, 2.4.7-p9, 2.4.6-p14, 2.4.5-p16, 2.4.4-p17 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low-privileged attacker to inject malicious sc… |
CVE-2026-34653 | High | 8.7 | — | 2026-05-12 | Adobe Commerce versions 2.4.9-beta1, 2.4.8-p4, 2.4.7-p9, 2.4.6-p14, 2.4.5-p16, 2.4.4-p17 and earlier are affected by an Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability that could result in arbit… |
CVE-2026-34684 | High | 7.8 | — | 2026-05-12 | Substance3D - Designer versions 15.1.0 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. |
CVE-2026-34683 | High | 7.8 | — | 2026-05-12 | Substance3D - Designer versions 15.1.0 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. |
CVE-2026-34682 | High | 7.8 | — | 2026-05-12 | Substance3D - Designer versions 15.1.0 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. |
CVE-2026-34681 | High | 7.8 | — | 2026-05-12 | Substance3D - Designer versions 15.1.0 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. |
CVE-2026-34676 | High | 7.8 | — | 2026-05-12 | Substance3D - Painter versions 12.0.2 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. |
CVE-2026-34675 | High | 7.8 | — | 2026-05-12 | Substance3D - Painter versions 12.0.2 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. |
CVE-2026-34644 | High | 7.8 | — | 2026-05-12 | After Effects versions 26.0, 25.6.4 and earlier are affected by an Integer Overflow or Wraparound vulnerability that could result in arbitrary code execution in the context of the current user. |
CVE-2026-34643 | High | 7.8 | — | 2026-05-12 | After Effects versions 26.0, 25.6.4 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. |
CVE-2026-34642 | High | 7.8 | — | 2026-05-12 | After Effects versions 26.0, 25.6.4 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. |
CVE-2026-34640 | High | 7.8 | — | 2026-05-12 | Media Encoder versions 26.0.2, 25.6.4 and earlier are affected by an Integer Overflow or Wraparound vulnerability that could result in arbitrary code execution in the context of the current user. |
CVE-2026-34639 | High | 7.8 | — | 2026-05-12 | Media Encoder versions 26.0.2, 25.6.4 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. |
CVE-2026-34665 | High | 7.5 | — | 2026-05-12 | CAI Content Credentials versions c2pa-web@0.7.0, c2pa-v0.78.2 and earlier are affected by an Uncontrolled Resource Consumption vulnerability that could lead to application denial-of-service. |
CVE-2026-34652 | High | 7.5 | — | 2026-05-12 | Adobe Commerce versions 2.4.9-beta1, 2.4.8-p4, 2.4.7-p9, 2.4.6-p14, 2.4.5-p16, 2.4.4-p17 and earlier are affected by a Dependency on Vulnerable Third-Party Component vulnerability that could result in an application denial-of-service. |
CVE-2026-34651 | High | 7.5 | — | 2026-05-12 | Adobe Commerce versions 2.4.9-beta1, 2.4.8-p4, 2.4.7-p9, 2.4.6-p14, 2.4.5-p16, 2.4.4-p17 and earlier are affected by an Uncontrolled Resource Consumption vulnerability that could lead to application denial-of-service. |
CVE-2026-34650 | High | 7.5 | — | 2026-05-12 | Adobe Commerce versions 2.4.9-beta1, 2.4.8-p4, 2.4.7-p9, 2.4.6-p14, 2.4.5-p16, 2.4.4-p17 and earlier are affected by an Uncontrolled Resource Consumption vulnerability that could lead to application denial-of-service. |
CVE-2026-34649 | High | 7.5 | — | 2026-05-12 | Adobe Commerce versions 2.4.9-beta1, 2.4.8-p4, 2.4.7-p9, 2.4.6-p14, 2.4.5-p16, 2.4.4-p17 and earlier are affected by an Uncontrolled Resource Consumption vulnerability that could lead to application denial-of-service. |
CVE-2026-34648 | High | 7.5 | — | 2026-05-12 | Adobe Commerce versions 2.4.9-beta1, 2.4.8-p4, 2.4.7-p9, 2.4.6-p14, 2.4.5-p16, 2.4.4-p17 and earlier are affected by an Uncontrolled Resource Consumption vulnerability that could lead to application denial-of-service. |
CVE-2026-34646 | High | 7.5 | — | 2026-05-12 | Adobe Commerce versions 2.4.9-beta1, 2.4.8-p4, 2.4.7-p9, 2.4.6-p14, 2.4.5-p16, 2.4.4-p17 and earlier are affected by an Incorrect Authorization vulnerability that could result in a Security feature bypass. |
CVE-2026-34645 | High | 7.5 | — | 2026-05-12 | Adobe Commerce versions 2.4.9-beta1, 2.4.8-p4, 2.4.7-p9, 2.4.6-p14, 2.4.5-p16, 2.4.4-p17 and earlier are affected by an Incorrect Authorization vulnerability that could result in a Security feature bypass. |
CVE-2026-34647 | High | 7.4 | — | 2026-05-12 | Adobe Commerce versions 2.4.9-beta1, 2.4.8-p4, 2.4.7-p9, 2.4.6-p14, 2.4.5-p16, 2.4.4-p17 and earlier are affected by a Server-Side Request Forgery (SSRF) vulnerability that could result in a Security feature bypass. |
CVE-2026-34664 | Medium | 6.3 | — | 2026-05-12 | Substance3D - Designer versions 15.1.0 and earlier are affected by an Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability that could lead to arbitrary file system read. |
CVE-2026-34688 | Medium | 6.2 | — | 2026-05-12 | CAI Content Credentials versions c2pa-web@0.7.0, c2pa-v0.78.2 and earlier are affected by an Improper Input Validation vulnerability that could result in an application denial-of-service. |
CVE-2026-34680 | Medium | 6.2 | — | 2026-05-12 | CAI Content Credentials versions c2pa-web@0.7.0, c2pa-v0.78.2 and earlier are affected by an Integer Overflow or Wraparound vulnerability that could result in an application denial-of-service. |
CVE-2026-34679 | Medium | 6.2 | — | 2026-05-12 | CAI Content Credentials versions c2pa-web@0.7.0, c2pa-v0.78.2 and earlier are affected by an Improper Input Validation vulnerability that could result in an application denial-of-service. |
CVE-2026-34678 | Medium | 6.2 | — | 2026-05-12 | CAI Content Credentials versions c2pa-web@0.7.0, c2pa-v0.78.2 and earlier are affected by an Uncontrolled Resource Consumption vulnerability that could lead to application denial-of-service. |
CVE-2026-34677 | Medium | 6.2 | — | 2026-05-12 | CAI Content Credentials versions c2pa-web@0.7.0, c2pa-v0.78.2 and earlier are affected by an Uncontrolled Resource Consumption vulnerability that could lead to application denial-of-service. |
CVE-2026-34673 | Medium | 6.2 | — | 2026-05-12 | CAI Content Credentials versions c2pa-web@0.7.0, c2pa-v0.78.2 and earlier are affected by an Uncontrolled Resource Consumption vulnerability that could lead to application denial-of-service. |
CVE-2026-34672 | Medium | 6.2 | — | 2026-05-12 | CAI Content Credentials versions c2pa-web@0.7.0, c2pa-v0.78.2 and earlier are affected by an Integer Underflow (Wrap or Wraparound) vulnerability that could result in an application denial-of-service. |
CVE-2026-34671 | Medium | 6.2 | — | 2026-05-12 | CAI Content Credentials versions c2pa-web@0.7.0, c2pa-v0.78.2 and earlier are affected by an Integer Overflow or Wraparound vulnerability that could result in an application denial-of-service. |
CVE-2026-34670 | Medium | 6.2 | — | 2026-05-12 | CAI Content Credentials versions c2pa-web@0.7.0, c2pa-v0.78.2 and earlier are affected by an Improper Input Validation vulnerability that could result in an application denial-of-service. |
CVE-2026-34669 | Medium | 6.2 | — | 2026-05-12 | CAI Content Credentials versions c2pa-web@0.7.0, c2pa-v0.78.2 and earlier are affected by an Improper Input Validation vulnerability that could result in an application denial-of-service. |
CVE-2026-34668 | Medium | 6.2 | — | 2026-05-12 | CAI Content Credentials versions c2pa-web@0.7.0, c2pa-v0.78.2 and earlier are affected by an Improper Input Validation vulnerability that could result in an application denial-of-service. |
CVE-2026-34667 | Medium | 6.2 | — | 2026-05-12 | CAI Content Credentials versions c2pa-web@0.7.0, c2pa-v0.78.2 and earlier are affected by an Integer Underflow (Wrap or Wraparound) vulnerability that could result in an application denial-of-service. |
CVE-2026-34666 | Medium | 6.2 | — | 2026-05-12 | CAI Content Credentials versions c2pa-web@0.7.0, c2pa-v0.78.2 and earlier are affected by an Improper Input Validation vulnerability that could result in an application denial-of-service. |
CVE-2026-34654 | Medium | 5.3 | — | 2026-05-12 | Adobe Commerce versions 2.4.9-beta1, 2.4.8-p4, 2.4.7-p9, 2.4.6-p14, 2.4.5-p16, 2.4.4-p17 and earlier are affected by a Dependency on Vulnerable Third-Party Component vulnerability that could result in an application denial-of-service. |
CVE-2026-34658 | Medium | 4.8 | — | 2026-05-12 | Adobe Commerce versions 2.4.9-beta1, 2.4.8-p4, 2.4.7-p9, 2.4.6-p14, 2.4.5-p16, 2.4.4-p17 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a high-privileged attacker to inject malicious s… |
CVE-2026-34655 | Medium | 4.8 | — | 2026-05-12 | Adobe Commerce versions 2.4.9-beta1, 2.4.8-p4, 2.4.7-p9, 2.4.6-p14, 2.4.5-p16, 2.4.4-p17 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a high-privileged attacker to inject malicious s… |
CVE-2026-34656 | Medium | 4.3 | — | 2026-05-12 | Adobe Commerce versions 2.4.9-beta1, 2.4.8-p4, 2.4.7-p9, 2.4.6-p14, 2.4.5-p16, 2.4.4-p17 and earlier are affected by an Improper Authorization vulnerability that could result in a Security feature bypass. |
CVE-2026-34685 | Low | 3.4 | — | 2026-05-12 | Adobe Commerce versions 2.4.9-beta1, 2.4.8-p4, 2.4.7-p9, 2.4.6-p14, 2.4.5-p16, 2.4.4-p17 and earlier [NEEDS REVIEW: impact mismatch — ticket says 'Arbitrary file system write', CIA triad derives 'Security Feature Bypass'. |
Google · 30 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-8580 | Critical | 9.6 | — | 2026-05-14 | Use after free in Mojo in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. |
CVE-2026-8581 | High | 8.8 | — | 2026-05-14 | Use after free in GPU in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. |
CVE-2026-8577 | High | 8.8 | — | 2026-05-14 | Integer overflow in Fonts in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. |
CVE-2026-8558 | High | 8.8 | — | 2026-05-14 | Out of bounds write in Fonts in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. |
CVE-2026-8551 | High | 8.8 | — | 2026-05-14 | Use after free in Downloads in Google Chrome prior to 148.0.7778.168 allowed a remote attacker who convinced a user to engage in specific UI gestures to execute arbitrary code via a crafted HTML page. |
CVE-2026-8549 | High | 8.8 | — | 2026-05-14 | Use after free in Media in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. |
CVE-2026-8540 | High | 8.8 | — | 2026-05-14 | Type Confusion in V8 in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. |
CVE-2026-8532 | High | 8.8 | — | 2026-05-14 | Integer overflow in XML in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. |
CVE-2026-8575 | High | 8.3 | — | 2026-05-14 | Use after free in UI in Google Chrome prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. |
CVE-2026-8571 | High | 8.3 | — | 2026-05-14 | Insufficient policy enforcement in GPU in Google Chrome on Android prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. |
CVE-2026-8548 | High | 8.3 | — | 2026-05-14 | Out of bounds write in Media in Google Chrome prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. |
CVE-2026-8534 | High | 8.3 | — | 2026-05-14 | Integer overflow in GPU in Google Chrome on Linux and ChromeOS prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. |
CVE-2026-8533 | High | 8.3 | — | 2026-05-14 | Use after free in Accessibility in Google Chrome prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. |
CVE-2026-8513 | High | 8.3 | — | 2026-05-14 | Use after free in Input in Google Chrome on Android prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. |
CVE-2026-8557 | High | 7.5 | — | 2026-05-14 | Use after free in Accessibility in Google Chrome prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to perform privilege escalation via a crafted HTML page. |
CVE-2026-8570 | Medium | 6.5 | — | 2026-05-14 | Type Confusion in V8 in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. |
CVE-2026-8586 | Medium | 5.5 | — | 2026-05-14 | Inappropriate implementation in Chromoting in Google Chrome prior to 148.0.7778.168 allowed a local attacker to bypass discretionary access control via a malicious file. |
CVE-2026-8539 | Medium | 5.4 | — | 2026-05-14 | Script injection in SanitizerAPI in Google Chrome on Android prior to 148.0.7778.168 allowed a remote attacker to inject arbitrary scripts or HTML (UXSS) via a crafted HTML page. |
CVE-2026-8583 | Medium | 5.3 | — | 2026-05-14 | Insufficient policy enforcement in WebXR in Google Chrome on Android prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory via a crafted H… |
CVE-2026-8582 | Medium | 5.3 | — | 2026-05-14 | Object lifecycle issue in Dawn in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. |
CVE-2026-8538 | Medium | 5.3 | — | 2026-05-14 | Insufficient validation of untrusted input in GPU in Google Chrome prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to perform a denial of service via a crafted HTML page. |
CVE-2026-8535 | Medium | 5.3 | — | 2026-05-14 | Out of bounds read in Media in Google Chrome on Linux and ChromeOS prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to obtain potentially sensitive information from process memory via a crafted JPE… |
CVE-2026-8576 | Medium | 4.3 | — | 2026-05-14 | Inappropriate implementation in CORS in Google Chrome on Linux and ChromeOS prior to 148.0.7778.168 allowed a remote attacker to leak cross-origin data via a crafted HTML page. |
CVE-2026-8566 | Medium | 4.3 | — | 2026-05-14 | Insufficient policy enforcement in Payments in Google Chrome on Android prior to 148.0.7778.168 allowed a remote attacker to bypass discretionary access control via a crafted HTML page. |
CVE-2026-8552 | Medium | 4.3 | — | 2026-05-14 | Heap buffer overflow in GPU in Google Chrome on Android prior to 148.0.7778.168 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. |
CVE-2026-8537 | Medium | 4.3 | — | 2026-05-14 | Insufficient policy enforcement in ViewTransitions in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to leak cross-origin data via a crafted HTML page. |
CVE-2026-8579 | Low | 3.1 | — | 2026-05-14 | Insufficient validation of untrusted input in Skia in Google Chrome prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to perform an out of bounds memory write via a crafted print file. |
CVE-2026-8578 | Low | 3.1 | — | 2026-05-14 | Out of bounds read in GPU in Google Chrome on Linux prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. |
CVE-2026-8572 | Low | 3.1 | — | 2026-05-14 | Insufficient policy enforcement in Network in Google Chrome on Android prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. |
CVE-2026-8553 | Low | 3.1 | — | 2026-05-14 | Use after free in GPU in Google Chrome prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to perform an out of bounds memory write via a crafted HTML page. |
Arubanetworks · 27 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-23827 | High | 7.5 | — | 2026-05-12 | A heap-based buffer overflow vulnerability exists in a Network management service of AOS-8 and AOS-10 that could allow an unauthenticated remote attacker to achieve remote code execution. |
CVE-2026-23826 | High | 7.5 | — | 2026-05-12 | A vulnerability in a network management service of AOS-8 Operating System could allow an unauthenticated remote attacker to exploit this vulnerability by sending specially crafted network packets to the affected device, potentially resulti… |
CVE-2026-23825 | High | 7.5 | — | 2026-05-12 | Vulnerabilities exist in a protocol-handling component of AOS-8 and AOS-10 Operating Systems. |
CVE-2026-23824 | High | 7.5 | — | 2026-05-12 | Vulnerabilities exist in a protocol-handling component of AOS-8 and AOS-10 Operating Systems. |
CVE-2026-44871 | High | 7.2 | — | 2026-05-12 | Command injection vulnerabilities exist in the command line interface (CLI) service accessed by the PAPI protocol of AOS-8 and AOS-10 Operating Systems. |
CVE-2026-44872 | High | 7.2 | — | 2026-05-12 | A command injection vulnerability exists in the web-based management interface of AOS-8 and AOS-10 Operating Systems. |
CVE-2026-44870 | High | 7.2 | — | 2026-05-12 | Command injection vulnerabilities exist in the command line interface (CLI) service accessed by the PAPI protocol of AOS-8 and AOS-10 Operating Systems. |
CVE-2026-44869 | High | 7.2 | — | 2026-05-12 | Command injection vulnerabilities exist in the web-based management interface of AOS-8 and AOS-10 Operating Systems. |
CVE-2026-44868 | High | 7.2 | — | 2026-05-12 | Command injection vulnerabilities exist in the web-based management interface of AOS-8 and AOS-10 Operating Systems. |
CVE-2026-44867 | High | 7.2 | — | 2026-05-12 | Command injection vulnerabilities exist in the web-based management interface of AOS-8 and AOS-10 Operating Systems. |
CVE-2026-44866 | High | 7.2 | — | 2026-05-12 | Command injection vulnerabilities exist in the web-based management interface of AOS-8 and AOS-10 Operating Systems. |
CVE-2026-44865 | High | 7.2 | — | 2026-05-12 | Command injection vulnerabilities exist in the web-based management interface of AOS-8 and AOS-10 Operating Systems. |
CVE-2026-44864 | High | 7.2 | — | 2026-05-12 | SQL injection vulnerabilities exist in several underlying service components accessible through the AOS-8 and AOS-10 command-line interface and management protocol. |
CVE-2026-44863 | High | 7.2 | — | 2026-05-12 | SQL injection vulnerabilities exist in several underlying service components accessible through the AOS-8 and AOS-10 command-line interface and management protocol. |
CVE-2026-44862 | High | 7.2 | — | 2026-05-12 | SQL injection vulnerabilities exist in several underlying service components accessible through the AOS-8 and AOS-10 command-line interface and management protocol. |
CVE-2026-44861 | High | 7.2 | — | 2026-05-12 | SQL injection vulnerabilities exist in several underlying service components accessible through the AOS-8 and AOS-10 command-line interface and management protocol. |
CVE-2026-44860 | High | 7.2 | — | 2026-05-12 | SQL injection vulnerabilities exist in several underlying service components accessible through the AOS-8 and AOS-10 command-line interface and management protocol. |
CVE-2026-44859 | High | 7.2 | — | 2026-05-12 | Stack-based buffer overflow vulnerabilities exist in several underlying management service components accessed through the command-line interface of the AOS-8 and AOS-10 Operating Systems. |
CVE-2026-44858 | High | 7.2 | — | 2026-05-12 | Stack-based buffer overflow vulnerabilities exist in several underlying management service components accessed through the command-line interface of the AOS-8 and AOS-10 Operating Systems. |
CVE-2026-44857 | High | 7.2 | — | 2026-05-12 | Stack-based buffer overflow vulnerabilities exist in several underlying management service components accessed through the command-line interface of the AOS-8 and AOS-10 Operating Systems. |
CVE-2026-44856 | High | 7.2 | — | 2026-05-12 | Stack-based buffer overflow vulnerabilities exist in several underlying management service components accessed through the command-line interface of the AOS-8 and AOS-10 Operating Systems. |
CVE-2026-44855 | High | 7.2 | — | 2026-05-12 | Stack-based buffer overflow vulnerabilities exist in several underlying management service components accessed through the command-line interface of the AOS-8 and AOS-10 Operating Systems. |
CVE-2026-44854 | High | 7.2 | — | 2026-05-12 | Command injection vulnerabilities exist in the web-based management interface of AOS-8 and AOS-10 Operating Systems. |
CVE-2026-44853 | High | 7.2 | — | 2026-05-12 | Command injection vulnerabilities exist in the web-based management interface of AOS-8 and AOS-10 Operating Systems. |
CVE-2026-44852 | High | 7.2 | — | 2026-05-12 | An authenticated remote code execution vulnerability exists in the AOS-8 and AOS-10 web-based management interface. |
CVE-2026-44873 | Medium | 5.4 | — | 2026-05-12 | A session management vulnerability in AOS-8 allows previously authenticated users to retain network access after their accounts are administratively disabled. |
CVE-2026-44874 | Medium | 4.9 | — | 2026-05-12 | A vulnerability exists in the web-based management interface of an AOS-10 Gateway that could allow an authenticated remote attacker to access sensitive files on the underlying operating system. |
Palo Alto Networks · 26 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-0257 | Critical | 9.1 | KEV | 2026-05-13 | Authentication bypass vulnerabilities in the GlobalProtect portal and gateway of Palo Alto Networks PAN-OS® software allows the attacker to bypass security restrictions and establish an unauthorized VPN connection. |
CVE-2026-0243 | — | — | — | 2026-05-13 | A denial of service (DoS) vulnerability in Palo Alto Networks Prisma SD-WAN ION devices enables an unauthenticated attacker in a network adjacent to a Prisma SD-WAN ION device to cause a system disruption by sending a specially crafted IPv… |
CVE-2026-0262 | — | — | — | 2026-05-13 | Multiple denial of service vulnerabilities in Palo Alto Networks PAN-OS® software allow an unauthenticated attacker with network access to cause a denial of service (DoS) condition by sending specially crafted network traffic. |
CVE-2026-0261 | — | — | — | 2026-05-13 | Multiple command injection vulnerabilities in Palo Alto Networks PAN-OS® software enable an authenticated administrator to bypass system restrictions and run arbitrary commands as a root user. |
CVE-2026-0259 | — | — | — | 2026-05-13 | An arbitrary File Read and Delete Vulnerability in Palo Alto Networks WildFire® WF-500 and WF-500-B appliances enables users to read sensitive information and delete arbitrary files. |
CVE-2026-0258 | — | — | — | 2026-05-13 | A server-side request forgery (SSRF) vulnerability in the IKEv2 implementation of Palo Alto Networks PAN-OS® software allows an unauthenticated attacker to cause the firewall to send network requests to unintended destinations or cause a d… |
CVE-2026-0256 | — | — | — | 2026-05-13 | A stored cross-site scripting (XSS) vulnerability in Palo Alto Networks PAN-OS® software enables a malicious authenticated administrator to store a JavaScript payload using the web interface. |
CVE-2026-0251 | — | — | — | 2026-05-13 | Multiple local privilege escalation vulnerabilities in the Palo Alto Networks GlobalProtect™ app allow a local user to escalate their privileges to NT AUTHORITY\SYSTEM on Windows and root on macOS and Linux. |
CVE-2026-0250 | — | — | — | 2026-05-13 | A buffer overflow vulnerability exists in the Palo Alto Networks GlobalProtect™ app that enables a man in the middle attacker to disrupt system processes and potentially execute arbitrary code with SYSTEM privileges. |
CVE-2026-0249 | — | — | — | 2026-05-13 | Multiple improper certificate validation vulnerabilities in the Palo Alto Networks GlobalProtect™ app enables an attacker to intercept encrypted communications and potentially compromise the endpoint. |
CVE-2026-0248 | — | — | — | 2026-05-13 | An improper certificate validation vulnerability in the Prisma Access Agent® for Android and Chrome OS enables an attacker to perform a man-in-the-middle (MitM) attack to intercept VPN traffic. |
CVE-2026-0247 | — | — | — | 2026-05-13 | Multiple authorization bypass vulnerabilities in the Endpoint DLP component of Prisma Access Agent® allow a local attacker to bypass authentication controls and execute privileged operations. |
CVE-2026-0246 | — | — | — | 2026-05-13 | A vulnerability with a privilege management mechanism in the Palo Alto Networks Prisma Access Agent® enables a locally authenticated non-administrative user to escalate their privileges to root on macOS and Linux or NT AUTHORITY\SYSTEM on… |
CVE-2026-0245 | — | — | — | 2026-05-13 | Multiple information disclosure vulnerabilities in Prisma Access Agent® allow a local user to access sensitive configuration data and credentials. |
CVE-2026-0244 | — | — | — | 2026-05-13 | An improper certificate validation vulnerability in the Palo Alto Networks Prisma SD-WAN ION enables man-in-the-middle (MitM) attacker to impersonate the controller. |
CVE-2026-0242 | — | — | — | 2026-05-13 | A SQL injection vulnerability in Trust Protection Foundation allows an authenticated attacker to execute arbitrary SQL commands against the product database. |
CVE-2026-0241 | — | — | — | 2026-05-13 | Incorrect Authorization vulnerabilities in Trust Protection Foundation allow attackers to bypass access controls and perform unauthorized actions on restricted resources. |
CVE-2026-0240 | — | — | — | 2026-05-13 | An information disclosure vulnerability in Trust Protection Foundation enables an authenticated attacker to obtain sensitive information from the server's vault. |
CVE-2026-0239 | — | — | — | 2026-05-13 | An information disclosure vulnerability in the Chronosphere Chronocollector enables an unauthenticated attacker with network access to the collector service to retrieve sensitive information. |
CVE-2026-0238 | — | — | — | 2026-05-13 | A vulnerability in Palo Alto Networks Broker VM allows an authenticated administrator to inject arbitrary content into certain Broker VM fields. |
CVE-2026-0236 | — | — | — | 2026-05-13 | A code injection vulnerability in Palo Alto Networks Prisma® Browser on macOS fails to properly restrict access to its AppleScript interface allowing a locally authenticated non-admin user to leverage this exposed Apple Event handler to se… |
CVE-2026-0235 | — | — | — | 2026-05-13 | A race condition vulnerability in Palo Alto Networks Prisma® Browser enables a locally authenticated non-admin user to bypass certain access and data control policies. |
CVE-2026-0265 | — | — | — | 2026-05-13 | An authentication bypass vulnerability in Palo Alto Networks PAN-OS® software enables an unauthenticated attacker with network access to bypass authentication controls when Cloud Authentication Service (CAS) is enabled. |
CVE-2026-0264 | — | — | — | 2026-05-13 | A buffer overflow vulnerability in the DNS proxy and DNS Server features of Palo Alto Networks PAN-OS® Software allows an unauthenticated attacker with network access to cause a denial of service (DoS) condition (all PAN-OS platforms excep… |
CVE-2026-0263 | — | — | — | 2026-05-13 | A buffer overflow vulnerability in the IKEv2 processing of Palo Alto Networks PAN-OS® software allows an unauthenticated network-based attacker to execute arbitrary code with elevated privileges on the firewall, or cause a denial of servic… |
CVE-2026-0237 | — | — | — | 2026-05-13 | An improper protection of alternate path vulnerability in Palo Alto Networks Prisma® Browser on macOS fails to properly restrict access to an internal automation bridge. |
Gitlab · 24 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-7481 | High | 8.7 | — | 2026-05-14 | GitLab has remediated an issue in GitLab EE affecting all versions from 16.4 before 18.9.7, 18.10 before 18.10.6, and 18.11 before 18.11.3 that could have allowed an authenticated user with developer-role permissions to execute arbitrary J… |
CVE-2026-7377 | High | 8.7 | — | 2026-05-14 | GitLab has remediated an issue in GitLab EE affecting all versions from 18.7 before 18.9.7, 18.10 before 18.10.6, and 18.11 before 18.11.3 that, in customizable analytics dashboards, could have allowed an authenticated user to execute arbi… |
CVE-2026-6073 | High | 8.7 | — | 2026-05-14 | GitLab has remediated an issue in GitLab EE affecting all versions from 18.7 before 18.9.7, 18.10 before 18.10.6, and 18.11 before 18.11.3 that could have allowed an authenticated user to execute arbitrary JavaScript in other users' browse… |
CVE-2026-1659 | High | 7.5 | — | 2026-05-14 | GitLab has remediated an issue in GitLab CE/EE affecting all versions from 9.0 before 18.9.7, 18.10 before 18.10.6, and 18.11 before 18.11.3 that could have allowed an unauthenticated user to cause denial of service by sending specially cr… |
CVE-2025-14870 | High | 7.5 | — | 2026-05-14 | GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.5 before 18.9.7, 18.10 before 18.10.6, and 18.11 before 18.11.3 that could have allowed an unauthenticated user to cause denial of service by sending specially c… |
CVE-2025-14869 | High | 7.5 | — | 2026-05-14 | GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.5 before 18.9.7, 18.10 before 18.10.6, and 18.11 before 18.11.3 that could have allowed an unauthenticated user to cause denial of service by sending specially c… |
CVE-2026-1322 | Medium | 6.8 | — | 2026-05-14 | GitLab has remediated an issue in GitLab CE/EE affecting all versions from 16.0 before 18.9.7, 18.10 before 18.10.6, and 18.11 before 18.11.3 that could have allowed an authenticated user with a read_api scoped OAuth application to create… |
CVE-2026-8280 | Medium | 6.5 | — | 2026-05-14 | GitLab has remediated an issue in GitLab CE/EE affecting all versions from 8.3 before 18.9.7, 18.10 before 18.10.6, and 18.11 before 18.11.3 that could have allowed an authenticated user to cause denial of service through excessive memory… |
CVE-2026-4527 | Medium | 6.5 | — | 2026-05-14 | GitLab has remediated an issue in GitLab CE/EE affecting all versions from 11.10 before 18.9.7, 18.10 before 18.10.6, and 18.11 before 18.11.3 that could have allowed an unauthenticated user to create unauthorized Jira subscriptions for a… |
CVE-2026-4524 | Medium | 6.5 | — | 2026-05-14 | GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.9.1 before 18.9.7, 18.10 before 18.10.6, and 18.11 before 18.11.3 that could have allowed an authenticated user to access confidential issue content in public pr… |
CVE-2026-1184 | Medium | 6.5 | — | 2026-05-14 | GitLab has remediated an issue in GitLab EE affecting all versions from 11.9 before 18.9.7, 18.10 before 18.10.6, and 18.11 before 18.11.3 that could have allowed an unauthenticated user to cause denial of service by uploading a specially… |
CVE-2026-3160 | Medium | 5.8 | — | 2026-05-14 | GitLab has remediated an issue in GitLab CE/EE affecting all versions from 13.7 before 18.9.7, 18.10 before 18.10.6, and 18.11 before 18.11.3 that could have allowed an authenticated user to view Jira issues outside the configured project… |
CVE-2026-6335 | Medium | 5.4 | — | 2026-05-14 | GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.11 before 18.11.3 that under certain conditions could have allowed an authenticated user to execute arbitrary code in another user's browser session due to impro… |
CVE-2025-12669 | Medium | 5.4 | — | 2026-05-14 | GitLab has remediated an issue in GitLab CE/EE affecting all versions from 15.11 before 18.9.7, 18.10 before 18.10.6, and 18.11 before 18.11.3 that could have allowed an authenticated user to inject HTML and JavaScript into email notificat… |
CVE-2026-8144 | Medium | 4.3 | — | 2026-05-14 | GitLab has remediated an issue in GitLab CE/EE affecting all versions from 15.1 before 18.9.7, 18.10 before 18.10.6, and 18.11 before 18.11.3 that could have allowed an authenticated user with project membership to enumerate private group… |
CVE-2026-6063 | Medium | 4.3 | — | 2026-05-14 | GitLab has remediated an issue in GitLab EE affecting all versions from 11.10 before 18.9.7, 18.10 before 18.10.6, and 18.11 before 18.11.3 that under certain conditions could have allowed an authenticated user with developer-role permissi… |
CVE-2026-3607 | Medium | 4.3 | — | 2026-05-14 | GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.3 before 18.9.7, 18.10 before 18.10.6, and 18.11 before 18.11.3 that could have allowed an authenticated user with developer-role permissions to bypass package p… |
CVE-2026-3074 | Medium | 4.3 | — | 2026-05-14 | GitLab has remediated an issue in GitLab CE/EE affecting all versions from 16.7 before 18.9.7, 18.10 before 18.10.6, and 18.11 before 18.11.3 that could have allowed an unauthenticated user to download private debugging symbols from inacce… |
CVE-2026-3073 | Medium | 4.3 | — | 2026-05-14 | GitLab has remediated an issue in GitLab CE/EE affecting all versions from 17.6 before 18.9.7, 18.10 before 18.10.6, and 18.11 before 18.11.3 that could have allowed an authenticated user with developer-role permissions to bypass PyPI pack… |
CVE-2026-1338 | Medium | 4.3 | — | 2026-05-14 | GitLab has remediated an issue in GitLab CE/EE affecting all versions from 17.10 before 18.9.7, 18.10 before 18.10.6, and 18.11 before 18.11.3 that could have allowed an authenticated user with developer-role permissions to delete protecte… |
CVE-2025-13874 | Medium | 4.3 | — | 2026-05-14 | GitLab has remediated an issue in GitLab CE/EE affecting all versions from 15.1 before 18.9.7, 18.10 before 18.10.6, and 18.11 before 18.11.3 that could have allowed an authenticated user with Guest permissions to view issues in projects t… |
CVE-2026-7471 | Low | 3.5 | — | 2026-05-14 | GitLab has remediated an issue in GitLab EE affecting all versions from 18.8 before 18.9.7, 18.10 before 18.10.6, and 18.11 before 18.11.3 that could have allowed an authenticated user with control of a virtual registry upstream to make re… |
CVE-2026-2900 | Low | 2.7 | — | 2026-05-14 | GitLab has remediated an issue in GitLab EE affecting all versions from 16.10 before 18.9.7, 18.10 before 18.10.6, and 18.11 before 18.11.3 that when instance-level approval rule editing prevention was enabled, could have allowed an authen… |
CVE-2026-6883 | Low | 2.6 | — | 2026-05-14 | GitLab has remediated an issue in GitLab EE affecting all versions from 15.7 before 18.9.7, 18.10 before 18.10.6, and 18.11 before 18.11.3 that could have allowed an authenticated user to bypass merge request approval requirements due to i… |
Openclaw · 21 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-8634 | Critical | 9.1 | — | 2026-05-14 | Crabbox prior to v0.12.0 contains an environment variable exposure vulnerability that allows attackers with access to a malicious or compromised repository to forward local secrets such as API tokens, cloud credentials, and broker tokens i… |
CVE-2026-8621 | High | 8.8 | — | 2026-05-14 | Crabbox prior to v0.12.0 contains an authentication bypass vulnerability that allows non-admin shared-token callers to impersonate other owners or organizations by spoofing identity headers. |
CVE-2026-45223 | High | 8.8 | — | 2026-05-11 | Crabbox before 0.9.0 contains an authentication bypass vulnerability in the coordinator user-token verification path where the verifyUserToken() function fails to reject payloads containing an admin claim, allowing attackers to escalate pr… |
CVE-2026-45006 | High | 8.8 | — | 2026-05-11 | OpenClaw before 2026.4.23 contains an improper access control vulnerability in the gateway tool's config.apply and config.patch operations that allows compromised models to write unsafe configuration changes by bypassing an incomplete deny… |
CVE-2026-8629 | High | 8.1 | — | 2026-05-14 | Crabbox prior to v0.12.0 contains a privilege escalation vulnerability that allows users with shared visibility-only access to obtain Code, WebVNC, and Egress agent tickets by sending POST requests to ticket endpoints. |
CVE-2026-45004 | High | 7.8 | — | 2026-05-11 | OpenClaw before 2026.4.23 contains an arbitrary code execution vulnerability in the bundled plugin setup resolver that loads setup-api.js from process.cwd() during provider setup metadata resolution. |
CVE-2026-44995 | High | 7.3 | — | 2026-05-11 | OpenClaw before 2026.4.20 contains an improper environment variable validation vulnerability in MCP stdio server configuration that allows attackers to execute arbitrary code. |
CVE-2026-45224 | High | 7.1 | — | 2026-05-11 | Crabbox before 0.9.0 contains a path traversal vulnerability in the Islo provider's workspace path resolution that allows attackers to supply absolute or relative paths that resolve outside the intended /workspace directory. |
CVE-2026-45001 | High | 7.1 | — | 2026-05-11 | OpenClaw before 2026.4.20 contains a guard bypass vulnerability in the agent-facing gateway config.patch and config.apply endpoints that fails to protect operator-trusted settings including sandbox policy, plugin enablement, gateway auth/T… |
CVE-2026-45005 | Medium | 6.0 | — | 2026-05-11 | OpenClaw before 2026.4.23 caches resolved webhook route secrets backed by SecretRef values, allowing stale secrets to remain valid after rotation and reload. |
CVE-2026-44998 | Medium | 5.4 | — | 2026-05-11 | OpenClaw before 2026.4.20 contains a tool policy bypass vulnerability allowing bundled MCP and LSP tools to circumvent configured tool restrictions. |
CVE-2026-44993 | Medium | 5.4 | — | 2026-05-11 | OpenClaw before 2026.4.20 contains a message classification vulnerability in Feishu card-action callbacks that misclassifies direct messages as group conversations. |
CVE-2026-45002 | Medium | 5.3 | — | 2026-05-11 | OpenClaw before 2026.4.20 contains a hook session-key bypass vulnerability that allows attackers to circumvent the hooks.allowRequestSessionKey opt-in restriction. |
CVE-2026-44999 | Medium | 5.3 | — | 2026-05-11 | OpenClaw before 2026.4.20 fails to properly preserve untrusted labels for isolated cron awareness events, allowing webhook-triggered cron agent output to be recorded as trusted system events. |
CVE-2026-44994 | Medium | 5.3 | — | 2026-05-11 | OpenClaw before 2026.4.22 contains an authentication bypass vulnerability in the Control UI bootstrap config endpoint that allows unauthenticated attackers to read sensitive configuration fields. |
CVE-2026-45003 | Medium | 5.0 | — | 2026-05-11 | OpenClaw before 2026.4.22 allows workspace dotenv files to override connector endpoint hosts for Matrix, Mattermost, IRC, and Synology connectors. |
CVE-2026-45000 | Medium | 5.0 | — | 2026-05-11 | OpenClaw before 2026.4.20 contains a server-side request forgery vulnerability in browser CDP profile creation that skips strict-mode SSRF policy checks. |
CVE-2026-44992 | Medium | 5.0 | — | 2026-05-11 | OpenClaw versions 2026.4.5 before 2026.4.20 contain an environment variable injection vulnerability allowing workspace dotenv to override MINIMAX_API_HOST. |
CVE-2026-44997 | Medium | 4.3 | — | 2026-05-11 | OpenClaw before 2026.4.22 contains a security envelope constraint bypass vulnerability allowing restricted subagents to spawn ACP child sessions that fail to inherit depth, child-count limits, control scope, or target-agent restrictions. |
CVE-2026-44991 | Medium | 4.2 | — | 2026-05-11 | OpenClaw before 2026.4.21 contains an authorization bypass vulnerability in command-auth.ts that allows non-owner senders to execute owner-enforced slash commands when wildcard inbound senders are configured without explicit owner allowFro… |
CVE-2026-44996 | Low | 3.7 | — | 2026-05-11 | OpenClaw before 2026.4.15 contains an arbitrary local file read vulnerability in the webchat audio embedding helper that fails to apply local media root containment checks. |
Siemens · 20 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-41551 | Critical | 9.1 | — | 2026-05-12 | A vulnerability has been identified in ROS# (All versions < V2.2.2). |
CVE-2026-25787 | Critical | 9.1 | — | 2026-05-12 | Affected devices do not properly validate and sanitize Technology Object (TO) name rendered on the "Motion Control Diagnostics" page of the web interface. |
CVE-2026-25786 | Critical | 9.1 | — | 2026-05-12 | Affected devices do not properly validate and sanitize PLC/station name rendered on the "communication" parameters page of the web interface. This could allow an authenticated attacker who is authorized to download a TIA project into the… |
CVE-2026-22924 | Critical | 9.1 | — | 2026-05-12 | A vulnerability has been identified in SIMATIC CN 4100 (All versions < V5.0). |
CVE-2025-40949 | Critical | 9.1 | — | 2026-05-12 | A vulnerability has been identified in RUGGEDCOM ROX MX5000 (All versions < V2.17.1), RUGGEDCOM ROX MX5000RE (All versions < V2.17.1), RUGGEDCOM ROX RX1400 (All versions < V2.17.1), RUGGEDCOM ROX RX1500 (All versions < V2.17.1), RUGGEDCOM… |
CVE-2025-40946 | High | 8.3 | — | 2026-05-12 | A vulnerability has been identified in blueplanet 100 NX3 M8 (All versions), blueplanet 100 TL3 GEN2 (All versions < V6.1.4.9), blueplanet 105 TL3 (All versions), blueplanet 105 TL3 GEN2 (All versions < V6.1.4.9), blueplanet 110 TL3 (All v… |
CVE-2025-12659 | High | 7.8 | — | 2026-05-12 | Siemens Simcenter Femap contains a memory corruption vulnerability while parsing specially crafted IPT files. |
CVE-2026-44412 | High | 7.8 | — | 2026-05-12 | A vulnerability has been identified in Solid Edge SE2026 (All versions < V226.0 Update 5). |
CVE-2026-44411 | High | 7.8 | — | 2026-05-12 | A vulnerability has been identified in Solid Edge SE2026 (All versions < V226.0 Update 5). |
CVE-2026-27662 | High | 7.7 | — | 2026-05-12 | Affected devices do not properly restrict access to the web browser via the Control Panel when no corresponding security mechanisms are in place. This could allow an unauthenticated attacker to gain unauthorized access to the web browser… |
CVE-2026-33893 | High | 7.5 | — | 2026-05-12 | A vulnerability has been identified in Teamcenter V2312 (All versions < V2312.0014), Teamcenter V2406 (All versions < V2406.0012), Teamcenter V2412 (All versions < V2412.0009), Teamcenter V2506 (All versions < V2506.0005), Teamcenter V2512… |
CVE-2026-22925 | High | 7.5 | — | 2026-05-12 | A vulnerability has been identified in SIMATIC CN 4100 (All versions < V5.0). |
CVE-2025-40947 | High | 7.5 | — | 2026-05-12 | A vulnerability has been identified in RUGGEDCOM ROX MX5000 (All versions < V2.17.1), RUGGEDCOM ROX MX5000RE (All versions < V2.17.1), RUGGEDCOM ROX RX1400 (All versions < V2.17.1), RUGGEDCOM ROX RX1500 (All versions < V2.17.1), RUGGEDCOM… |
CVE-2025-40833 | High | 7.5 | — | 2026-05-12 | The affected devices contain a null pointer dereference vulnerability while processing specially crafted IPv4 requests. |
CVE-2026-33862 | High | 7.3 | — | 2026-05-12 | A vulnerability has been identified in Teamcenter V2312 (All versions < V2312.0014), Teamcenter V2406 (All versions < V2406.0012), Teamcenter V2412 (All versions < V2412.0009), Teamcenter V2506 (All versions < V2506.0005), Teamcenter V2512… |
CVE-2026-25789 | High | 7.1 | — | 2026-05-12 | Affected devices do not properly validate and sanitize filenames on the Firmware Update page. |
CVE-2025-40948 | Medium | 6.8 | — | 2026-05-12 | A vulnerability has been identified in RUGGEDCOM ROX MX5000 (All versions < V2.17.1), RUGGEDCOM ROX MX5000RE (All versions < V2.17.1), RUGGEDCOM ROX RX1400 (All versions < V2.17.1), RUGGEDCOM ROX RX1500 (All versions < V2.17.1), RUGGEDCOM… |
CVE-2026-41125 | Medium | 6.0 | — | 2026-05-12 | A vulnerability has been identified in blueplanet 100 NX3 M8 (All versions), blueplanet 100 TL3 GEN2 (All versions), blueplanet 105 TL3 (All versions), blueplanet 105 TL3 GEN2 (All versions), blueplanet 110 TL3 (All versions), blueplanet 1… |
CVE-2026-42177 | Medium | 5.3 | — | 2026-05-12 | linux-entra-sso is a browser plugin for Linux to SSO on Microsoft Entra ID. |
CVE-2024-54017 | Medium | 5.3 | — | 2026-05-12 | A vulnerability has been identified in SIPROTEC 5 6MD84 (CP300) (All versions < V11.0), SIPROTEC 5 6MD85 (CP200) (All versions), SIPROTEC 5 6MD85 (CP300) (All versions >= V7.80 < V11.0), SIPROTEC 5 6MD86 (CP200) (All versions), SIPROTEC 5… |
Linux · 16 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-43490 | High | 8.8 | — | 2026-05-15 | In the Linux kernel, the following vulnerability has been resolved: ksmbd: validate inherited ACE SID length smb_inherit_dacl() walks the parent directory DACL loaded from the security descriptor xattr. |
CVE-2026-43481 | High | 7.8 | — | 2026-05-13 | In the Linux kernel, the following vulnerability has been resolved: net-shapers: don't free reply skb after genlmsg_reply() genlmsg_reply() hands the reply skb to netlink, and netlink_unicast() consumes it on all return paths, whether th… |
CVE-2026-43476 | High | 7.8 | — | 2026-05-13 | In the Linux kernel, the following vulnerability has been resolved: iio: chemical: sps30_i2c: fix buffer size in sps30_i2c_read_meas() sizeof(num) evaluates to sizeof(size_t) (8 bytes on 64-bit) instead of the intended __be32 element siz… |
CVE-2026-43500 | High | 7.8 | — | 2026-05-11 | In the Linux kernel, the following vulnerability has been resolved: rxrpc: Also unshare DATA/RESPONSE packets when paged frags are present The DATA-packet handler in rxrpc_input_call_event() and the RESPONSE handler in rxrpc_verify_respo… |
CVE-2026-43489 | Medium | 5.5 | — | 2026-05-13 | In the Linux kernel, the following vulnerability has been resolved: liveupdate: luo_file: remember retrieve() status LUO keeps track of successful retrieve attempts on a LUO file. |
CVE-2026-43488 | Medium | 5.5 | — | 2026-05-13 | In the Linux kernel, the following vulnerability has been resolved: usb: xhci: Prevent interrupt storm on host controller error (HCE) The xHCI controller reports a Host Controller Error (HCE) in UAS Storage Device plug/unplug scenarios o… |
CVE-2026-43487 | Medium | 5.5 | — | 2026-05-13 | In the Linux kernel, the following vulnerability has been resolved: ata: libata-core: Disable LPM on ST1000DM010-2EP102 According to a user report, the ST1000DM010-2EP102 has problems with LPM, causing random system freezes. |
CVE-2026-43486 | Medium | 5.5 | — | 2026-05-13 | In the Linux kernel, the following vulnerability has been resolved: arm64: contpte: fix set_access_flags() no-op check for SMMU/ATS faults contpte_ptep_set_access_flags() compared the gathered ptep_get() value against the requested entry… |
CVE-2026-43485 | Medium | 5.5 | — | 2026-05-13 | In the Linux kernel, the following vulnerability has been resolved: nouveau/gsp: drop WARN_ON in ACPI probes These WARN_ONs seem to trigger a lot, and we don't seem to have a plan to fix them, so just drop them, as they are most likely h… |
CVE-2026-43484 | Medium | 5.5 | — | 2026-05-13 | In the Linux kernel, the following vulnerability has been resolved: mmc: core: Avoid bitfield RMW for claim/retune flags Move claimed and retune control flags out of the bitfield word to avoid unrelated RMW side effects in asynchronous c… |
CVE-2026-43483 | Medium | 5.5 | — | 2026-05-13 | In the Linux kernel, the following vulnerability has been resolved: KVM: SVM: Set/clear CR8 write interception when AVIC is (de)activated Explicitly set/clear CR8 write interception when AVIC is (de)activated to fix a bug where KVM leave… |
CVE-2026-43482 | Medium | 5.5 | — | 2026-05-13 | In the Linux kernel, the following vulnerability has been resolved: sched_ext: Disable preemption between scx_claim_exit() and kicking helper work scx_claim_exit() atomically sets exit_kind, which prevents scx_error() from triggering fur… |
CVE-2026-43480 | Medium | 5.5 | — | 2026-05-13 | In the Linux kernel, the following vulnerability has been resolved: ASoC: amd: acp3x-rt5682-max9836: Add missing error check for clock acquisition The acp3x_5682_init() function did not check the return value of clk_get(), which could le… |
CVE-2026-43479 | Medium | 5.5 | — | 2026-05-13 | In the Linux kernel, the following vulnerability has been resolved: net: usb: lan78xx: fix WARN in __netif_napi_del_locked on disconnect Remove redundant netif_napi_del() call from disconnect path. |
CVE-2026-43478 | Medium | 5.5 | — | 2026-05-13 | In the Linux kernel, the following vulnerability has been resolved: ASoC: codecs: rt1011: Use component to get the dapm context in spk_mode_put The correct helper to use in rt1011_recv_spk_mode_put() to retrieve the DAPM context is snd_s… |
CVE-2026-43477 | Medium | 5.5 | — | 2026-05-13 | In the Linux kernel, the following vulnerability has been resolved: drm/i915/vrr: Configure VRR timings after enabling TRANS_DDI_FUNC_CTL Apparently ICL may hang with an MCE if we write TRANS_VRR_VMAX/FLIPLINE before enabling TRANS_DDI_F… |
Vercel · 15 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44578 | High | 8.6 | — | 2026-05-13 | Next.js is a React framework for building full-stack web applications. |
CVE-2026-44574 | High | 8.1 | — | 2026-05-13 | Next.js is a React framework for building full-stack web applications. |
CVE-2026-46508 | High | 7.8 | — | 2026-05-15 | Turborepo is a high-performance build system for JavaScript and TypeScript codebases. |
CVE-2026-45109 | High | 7.5 | — | 2026-05-13 | Next.js is a React framework for building full-stack web applications. |
CVE-2026-44579 | High | 7.5 | — | 2026-05-13 | Next.js is a React framework for building full-stack web applications. |
CVE-2026-44575 | High | 7.5 | — | 2026-05-13 | Next.js is a React framework for building full-stack web applications. |
CVE-2026-44573 | High | 7.5 | — | 2026-05-13 | Next.js is a React framework for building full-stack web applications. |
CVE-2026-45773 | Medium | 6.5 | — | 2026-05-15 | Turborepo is a high-performance build system for JavaScript and TypeScript codebases. |
CVE-2026-44580 | Medium | 6.1 | — | 2026-05-13 | Next.js is a React framework for building full-stack web applications. |
CVE-2026-44577 | Medium | 5.9 | — | 2026-05-13 | Next.js is a React framework for building full-stack web applications. |
CVE-2026-44479 | Medium | 5.5 | — | 2026-05-13 | Vercel’s AI Cloud is a unified platform for building modern applications. |
CVE-2026-44576 | Medium | 5.4 | — | 2026-05-13 | Next.js is a React framework for building full-stack web applications. |
CVE-2026-44581 | Medium | 4.7 | — | 2026-05-13 | Next.js is a React framework for building full-stack web applications. |
CVE-2026-44582 | Low | 3.7 | — | 2026-05-13 | Next.js is a React framework for building full-stack web applications. |
CVE-2026-44572 | Low | 3.7 | — | 2026-05-13 | Next.js is a React framework for building full-stack web applications. |
Getgrav · 14 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-42613 | Critical | 9.4 | — | 2026-05-11 | Grav is a file-based Web platform. |
CVE-2026-42608 | Critical | 9.1 | — | 2026-05-11 | Grav is a file-based Web platform. |
CVE-2026-42607 | Critical | 9.1 | — | 2026-05-11 | Grav is a file-based Web platform. |
CVE-2026-42611 | High | 8.9 | — | 2026-05-11 | Grav is a file-based Web platform. |
CVE-2026-42844 | High | 8.8 | — | 2026-05-12 | Grav is a file-based Web platform. |
CVE-2026-42843 | High | 8.8 | — | 2026-05-11 | Grav API Plugin is a RESTful API for Grav CMS that provides full headless access to your site's content, media, configuration, users, and system management. |
CVE-2026-42612 | High | 8.5 | — | 2026-05-11 | Grav is a file-based Web platform. |
CVE-2026-42609 | High | 8.1 | — | 2026-05-11 | Grav is a file-based Web platform. |
CVE-2026-44738 | High | 7.7 | — | 2026-05-11 | Grav is a file-based Web platform. |
CVE-2026-42610 | Medium | 6.5 | — | 2026-05-11 | Grav is a file-based Web platform. |
CVE-2026-42842 | Medium | 5.4 | — | 2026-05-11 | The form plugin for Grav adds the ability to create and use forms. |
CVE-2026-42841 | Medium | 4.8 | — | 2026-05-11 | Grav is a file-based Web platform. |
CVE-2026-44737 | — | — | — | 2026-05-11 | grav-plugin-admin is the admin plugin for Grav is an HTML user interface that provides a convenient way to configure Grav and easily create and modify pages. |
CVE-2026-42845 | — | — | — | 2026-05-11 | The form plugin for Grav adds the ability to create and use forms. |
Patriksimek · 14 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44006 | Critical | 10.0 | — | 2026-05-13 | vm2 is an open source vm/sandbox for Node.js. |
CVE-2026-44005 | Critical | 10.0 | — | 2026-05-13 | vm2 is an open source vm/sandbox for Node.js. |
CVE-2026-43997 | Critical | 10.0 | — | 2026-05-13 | vm2 is an open source vm/sandbox for Node.js. |
CVE-2026-43999 | Critical | 9.9 | — | 2026-05-13 | vm2 is an open source vm/sandbox for Node.js. |
CVE-2026-45411 | Critical | 9.8 | — | 2026-05-13 | vm2 is an open source vm/sandbox for Node.js. |
CVE-2026-44009 | Critical | 9.8 | — | 2026-05-13 | vm2 is an open source vm/sandbox for Node.js. |
CVE-2026-44008 | Critical | 9.8 | — | 2026-05-13 | vm2 is an open source vm/sandbox for Node.js. |
CVE-2026-44007 | Critical | 9.1 | — | 2026-05-13 | vm2 is an open source vm/sandbox for Node.js. |
CVE-2026-44001 | High | 8.6 | — | 2026-05-13 | vm2 is an open source vm/sandbox for Node.js. |
CVE-2026-43998 | High | 8.5 | — | 2026-05-13 | vm2 is an open source vm/sandbox for Node.js. |
CVE-2026-44004 | High | 7.5 | — | 2026-05-13 | vm2 is an open source vm/sandbox for Node.js. |
CVE-2026-44000 | Medium | 6.5 | — | 2026-05-13 | vm2 is an open source vm/sandbox for Node.js. |
CVE-2026-44002 | Medium | 5.8 | — | 2026-05-13 | vm2 is an open source vm/sandbox for Node.js. |
CVE-2026-44003 | Medium | 5.3 | — | 2026-05-13 | vm2 is an open source vm/sandbox for Node.js. |
Thorsten · 13 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-46364 | Critical | 9.8 | — | 2026-05-15 | phpMyFAQ before 4.1.2 contains an unauthenticated SQL injection vulnerability in BuiltinCaptcha::garbageCollector() and BuiltinCaptcha::saveCaptcha() methods that interpolate unsanitized User-Agent headers into DELETE and INSERT queries. |
CVE-2026-45010 | Critical | 9.1 | — | 2026-05-15 | phpMyFAQ before 4.1.2 contains an improper restriction of excessive authentication attempts vulnerability in the /admin/check endpoint, which accepts arbitrary user-id parameters without session binding or rate limiting. |
CVE-2026-46367 | High | 7.6 | — | 2026-05-15 | phpMyFAQ before 4.1.2 contains a stored cross-site scripting vulnerability in Utils::parseUrl() that allows authenticated users to inject JavaScript via malformed URLs in comments. |
CVE-2026-46366 | High | 7.5 | — | 2026-05-15 | phpMyFAQ before 4.1.2 contains an information disclosure vulnerability in the getIdFromSolutionId() method that lacks permission filtering, allowing unauthenticated attackers to enumerate restricted FAQ entries and read their titles via th… |
CVE-2026-46359 | High | 7.5 | — | 2026-05-15 | phpMyFAQ before 4.1.2 contains a sql injection vulnerability in CurrentUser::setTokenData that allows authenticated attackers to execute arbitrary SQL by injecting malicious OAuth token claims. |
CVE-2026-46361 | Medium | 6.9 | — | 2026-05-15 | phpMyFAQ before 4.1.2 contains a stored cross-site scripting vulnerability in search.twig where result.question and result.answerPreview are rendered with the raw filter, disabling autoescape protection. |
CVE-2026-46362 | Medium | 6.5 | — | 2026-05-15 | phpMyFAQ before 4.1.2 contains an authorization bypass vulnerability in AbstractAdministrationController::userHasPermission() that fails to terminate execution after sending a forbidden response. |
CVE-2026-45008 | Medium | 6.5 | — | 2026-05-15 | phpMyFAQ before 4.1.2 contains a path traversal vulnerability in Client::deleteClientFolder that allows admins with INSTANCE_DELETE permission to delete arbitrary directories. |
CVE-2026-46365 | Medium | 5.4 | — | 2026-05-15 | phpMyFAQ before 4.1.2 contains a missing authorization vulnerability in the DELETE /admin/api/content/tags/{tagId} endpoint that allows any authenticated user to delete tags. |
CVE-2026-46363 | Medium | 5.4 | — | 2026-05-15 | phpMyFAQ before 4.1.2 contains a stored cross-site scripting vulnerability in FAQ creation and update endpoints that bypass sanitization through encode-decode cycles. |
CVE-2026-46360 | Medium | 5.4 | — | 2026-05-15 | phpMyFAQ before 4.1.2 contains a stored cross-site scripting vulnerability in SvgSanitizer::decodeAllEntities() that limits recursive entity decoding to 5 iterations, allowing attackers to bypass sanitization. |
CVE-2026-45009 | Medium | 4.3 | — | 2026-05-15 | phpMyFAQ before 4.1.2 contains an insufficient authorization vulnerability in admin-api routes that allows authenticated ordinary users to access administrative endpoints by only checking login status instead of verifying backend privilege… |
CVE-2026-45007 | Medium | 4.3 | — | 2026-05-15 | phpMyFAQ before 4.1.2 contains missing permission checks in ConfigurationTabController.php where 12 endpoints use userIsAuthenticated() instead of userHasPermission(CONFIGURATION_EDIT). |
Wwbn · 13 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-43884 | High | 7.7 | — | 2026-05-11 | WWBN AVideo is an open source video platform. |
CVE-2026-43873 | High | 7.5 | — | 2026-05-11 | WWBN AVideo is an open source video platform. |
CVE-2026-43874 | High | 7.2 | — | 2026-05-11 | WWBN AVideo is an open source video platform. |
CVE-2026-43875 | Medium | 6.8 | — | 2026-05-11 | WWBN AVideo is an open source video platform. |
CVE-2026-43876 | Medium | 6.4 | — | 2026-05-11 | WWBN AVideo is an open source video platform. |
CVE-2026-43878 | Medium | 6.1 | — | 2026-05-11 | WWBN AVideo is an open source video platform. |
CVE-2026-43879 | Medium | 5.4 | — | 2026-05-11 | WWBN AVideo is an open source video platform. |
CVE-2026-43877 | Medium | 5.4 | — | 2026-05-11 | WWBN AVideo is an open source video platform. |
CVE-2026-43881 | Medium | 5.3 | — | 2026-05-11 | WWBN AVideo is an open source video platform. |
CVE-2026-43880 | Medium | 5.3 | — | 2026-05-11 | WWBN AVideo is an open source video platform. |
CVE-2026-43882 | Medium | 4.3 | — | 2026-05-11 | WWBN AVideo is an open source video platform. |
CVE-2026-43883 | Medium | 4.2 | — | 2026-05-11 | WWBN AVideo is an open source video platform. |
CVE-2026-43885 | — | — | — | 2026-05-11 | WWBN AVideo is an open source video platform. |
Huawei · 12 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-41964 | High | 8.4 | — | 2026-05-15 | Permission control vulnerability in the web. Impact: Successful exploitation of this vulnerability may affect availability. |
CVE-2026-41970 | Medium | 6.8 | — | 2026-05-15 | Out-of-bounds write vulnerability in the distributed file system module. Impact: Successful exploitation of this vulnerability may affect availability. |
CVE-2026-41969 | Medium | 6.2 | — | 2026-05-15 | Permission control vulnerability in the projection module. Impact: Successful exploitation of this vulnerability may affect service confidentiality. |
CVE-2026-41968 | Medium | 5.9 | — | 2026-05-15 | Permission control vulnerability in the manufacturability design module. Impact: Successful exploitation of this vulnerability may affect availability. |
CVE-2026-41967 | Medium | 5.9 | — | 2026-05-15 | Permission control vulnerability in the manufacturability design module. Impact: Successful exploitation of this vulnerability may affect availability. |
CVE-2026-41961 | Medium | 5.9 | — | 2026-05-15 | Permission control vulnerability in contacts. Impact: Successful exploitation of this vulnerability may affect availability. |
CVE-2026-41960 | Medium | 5.8 | — | 2026-05-15 | Permission control vulnerability in calls. Impact: Successful exploitation of this vulnerability may affect availability. |
CVE-2026-41966 | Medium | 5.6 | — | 2026-05-15 | Permission control vulnerability in the smart sensing service. Impact: Successful exploitation of this vulnerability may affect service confidentiality. |
CVE-2026-41965 | Medium | 5.6 | — | 2026-05-15 | Use-After-Free (UAF) vulnerability in the web. Impact: Successful exploitation of this vulnerability may affect availability. |
CVE-2026-41971 | Medium | 5.5 | — | 2026-05-15 | Permission control vulnerability in the security control module. Impact: Successful exploitation of this vulnerability may affect service confidentiality. |
CVE-2026-41962 | Low | 3.6 | — | 2026-05-15 | Permission control vulnerability in the app management and control module. Impact: Successful exploitation of this vulnerability may affect service confidentiality. |
CVE-2026-41963 | Low | 2.8 | — | 2026-05-15 | Stack overflow vulnerability in the media platform. Impact: Successful exploitation of this vulnerability may affect availability. |
Sap_se · 12 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-34263 | Critical | 9.6 | — | 2026-05-12 | Due to improper Spring Security configuration, SAP Commerce Cloud allows an unauthenticated user to perform malicious input injection, resulting in arbitrary server-side code execution, leading to high impact on Confidentiality, Integrity… |
CVE-2026-34260 | Critical | 9.6 | — | 2026-05-12 | SAP S/4HANA (SAP Enterprise Search for ABAP) contains a SQL injection vulnerability that allows an authenticated attacker to inject malicious SQL statements through user-controlled input. |
CVE-2026-34259 | High | 8.2 | — | 2026-05-12 | Due to an OS Command Execution vulnerability in SAP Forecasting & Replenishment, an authenticated attacker with administrative authorizations could abuse a non-remote-enabled function to execute arbitrary operating system commands. |
CVE-2026-40133 | Medium | 6.3 | — | 2026-05-12 | Due to missing authorization check in SAP S/4HANA Condition Maintenance, an authenticated attacker could gain unauthorized access to view and modify condition table records, resulting in low impact on the confidentiality and integrity of t… |
CVE-2026-40137 | Medium | 6.1 | — | 2026-05-12 | SAP TAF_APPLAUNCHER within Business Server Pages allows an unauthenticated attacker to craft malicious links that, when clicked by a victim, redirects them to attacker?controlled sites, potentially exposing or altering sensitive informatio… |
CVE-2026-40132 | Medium | 5.4 | — | 2026-05-12 | Due to missing authorization check in SAP Strategic Enterprise Management (Scorecard Wizard in Business Server Pages), an authenticated attacker could access information that they are otherwise unauthorized to view. |
CVE-2026-0502 | Medium | 5.4 | — | 2026-05-12 | Due to insufficient CSRF protection in SAP BusinessObjects Business Intelligence Platform ,an authenticated user could be tricked by an attacker to send unintended requests to the web server. |
CVE-2026-34258 | Medium | 4.7 | — | 2026-05-12 | SAPUI5 (Search UI) allows an unauthenticated attacker to manipulate specific URL parameters on the Search UI to include malicious content. |
CVE-2026-40136 | Medium | 4.3 | — | 2026-05-12 | SAP Financial Consolidation allows an authenticated attacker to disconnect other users by terminating their sessions temporarily preventing access. |
CVE-2026-40134 | Medium | 4.3 | — | 2026-05-12 | Due to insufficient authorization checks in the SAP Incentive and Commission Management application, authenticated users could invoke a remote-enabled function module to perform table update operations. |
CVE-2026-40129 | Medium | 4.3 | — | 2026-05-12 | Due to a Code Injection vulnerability in SAP Application Server ABAP for SAP NetWeaver and ABAP Platform, an authenticated attacker could send specially crafted inputs to the application. |
CVE-2026-40131 | Low | 3.4 | — | 2026-05-12 | SQL injection vulnerability exists in @sap/hdi-deploy package, where SQL queries are dynamically constructed using user input without proper parameterization or prepared statements. |
Apache · 11 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-43512 | Critical | 9.8 | — | 2026-05-12 | DEPRECATED: Authentication Bypass Issues vulnerability in digest authentication in Apache Tomcat. |
CVE-2026-41293 | Critical | 9.8 | — | 2026-05-12 | Improper Input Validation vulnerability in Apache Tomcat. |
CVE-2026-43515 | Critical | 9.1 | — | 2026-05-12 | Improper Authorization vulnerability when multiple method constraints define an HTTP method for the same extension in Apache Tomcat. |
CVE-2026-35194 | High | 8.1 | — | 2026-05-15 | Code injection in SQL code generation in Apache Flink 1.15.0 through 1.20.x and 2.0.0 through 2.x allows authenticated users with query submission privileges to execute arbitrary code on TaskManagers via maliciously crafted SQL queries. |
CVE-2026-43513 | High | 7.5 | — | 2026-05-12 | Improper Handling of Case Sensitivity vulnerability in LockOutRealm in Apache Tomcat. |
CVE-2026-41284 | High | 7.5 | — | 2026-05-12 | Allocation of Resources Without Limits or Throttling vulnerability in Apache Tomcat. |
CVE-2026-42498 | High | 7.3 | — | 2026-05-12 | Exposure of HTTP Authentication Header to unexpected hosts during WebSocket authentication vulnerability in Apache Tomcat. |
CVE-2026-43826 | Medium | 6.5 | — | 2026-05-11 | The OpenSearch logging provider, when configured with a `host` URL that embeds credentials (for example `https://user:password@server.example.com:9200`), wrote the full host URL — including the embedded credentials — into task logs. |
CVE-2026-41018 | Medium | 6.5 | — | 2026-05-11 | The Elasticsearch logging provider, when configured with a `host` URL that embeds credentials (for example `https://user:password@server.example.com:9200`), wrote the full host URL — including the embedded credentials — into task logs. |
CVE-2026-45205 | Medium | 5.3 | — | 2026-05-14 | Uncontrolled Recursion vulnerability in Apache Commons. |
CVE-2026-43514 | Low | 3.7 | — | 2026-05-12 | Observable Timing Discrepancy vulnerability when comparing AJP secret in Apache Tomcat. |
Fortinet · 11 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44277 | Critical | 9.8 | — | 2026-05-12 | A improper access control vulnerability in Fortinet FortiAuthenticator 8.0.2, FortiAuthenticator 8.0.0, FortiAuthenticator 6.6.0 through 6.6.8, FortiAuthenticator 6.5.0 through 6.5.6 may allow attacker to execute unauthorized code or comma… |
CVE-2026-26083 | Critical | 9.8 | — | 2026-05-12 | A missing authorization vulnerability in Fortinet FortiSandbox 5.0.0 through 5.0.1, FortiSandbox 4.4.0 through 4.4.8, FortiSandbox Cloud 5.0.2 through 5.0.5, FortiSandbox PaaS 23.4 all versions, FortiSandbox PaaS 23.3 all versions, FortiSa… |
CVE-2025-53844 | High | 8.8 | — | 2026-05-12 | A out-of-bounds write vulnerability in Fortinet FortiOS 7.6.0 through 7.6.3, FortiOS 7.4.0 through 7.4.8, FortiOS 7.2.0 through 7.2.11 allows attacker to execute unauthorized code or commands via specially crafted packets. |
CVE-2025-53681 | High | 7.2 | — | 2026-05-12 | An improper neutralization of special elements used in an SQL Command ("SQL Injection&") vulnerability [CWE-89] vulnerability in Fortinet FortiMail 7.6.0 through 7.6.3, FortiMail 7.4.0 through 7.4.5, FortiMail 7.2.0 through 7.2.8 allows an… |
CVE-2025-53870 | Medium | 6.7 | — | 2026-05-12 | An improper neutralization of special elements used in an os command ('os command injection') vulnerability in Fortinet FortiAP 7.6.0 through 7.6.2, FortiAP 7.4.0 through 7.4.5, FortiAP 7.2 all versions, FortiAP 7.0 all versions, FortiAP 6… |
CVE-2025-53680 | Medium | 6.7 | — | 2026-05-12 | An improper neutralization of special elements used in an OS command ("OS Command Injection") vulnerability [CWE-78] vulnerability in Fortinet FortiAP 7.6.0 through 7.6.2, FortiAP 7.4.0 through 7.4.5, FortiAP 7.2 all versions, FortiAP 7.0… |
CVE-2026-44279 | Medium | 5.5 | — | 2026-05-12 | An improper export of android application components vulnerability in Fortinet FortiTokenAndroid 6.2 all versions, FortiTokenAndroid 6.1 all versions, FortiTokenAndroid 5.2 all versions may allow attacker to disclose information via an exp… |
CVE-2026-25088 | Medium | 5.4 | — | 2026-05-12 | An improper neutralization of special elements used in an sql command ('sql injection') vulnerability in Fortinet FortiNDR 7.6.0 through 7.6.2, FortiNDR 7.4.0 through 7.4.9, FortiNDR 7.2 all versions, FortiNDR 7.1 all versions, FortiNDR 7… |
CVE-2025-67604 | Medium | 5.3 | — | 2026-05-12 | A use of potentially dangerous function vulnerability in Fortinet FortiAnalyzer 7.6.0 through 7.6.4, FortiAnalyzer 7.4.0 through 7.4.8, FortiAnalyzer 7.2 all versions, FortiAnalyzer 7.0 all versions, FortiAnalyzer 6.4 all versions, FortiMa… |
CVE-2026-25690 | Medium | 4.3 | — | 2026-05-12 | An improper neutralization of argument delimiters in a command ('argument injection') vulnerability in Fortinet FortiDeceptor 6.0.0 through 6.0.2, FortiDeceptor 5.3.0 through 5.3.3, FortiDeceptor 5.2.0 through 5.2.1, FortiDeceptor 5.1 all… |
CVE-2026-44278 | Low | 2.3 | — | 2026-05-12 | A use of hard-coded cryptographic key vulnerability in Fortinet FortiClientWindows 7.4.0 through 7.4.2, FortiClientWindows 7.2 all versions may allow attacker to information disclosure via <insert attack vector here> |
Givanz · 11 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-46407 | High | 8.1 | — | 2026-05-15 | Vvveb is a powerful and easy to use CMS with page builder to build websites, blogs or ecommerce stores. |
CVE-2026-46408 | High | 7.6 | — | 2026-05-15 | Vvveb is a powerful and easy to use CMS with page builder to build websites, blogs or ecommerce stores. |
CVE-2026-44826 | High | 7.5 | — | 2026-05-15 | Vvveb is a powerful and easy to use CMS with page builder to build websites, blogs or ecommerce stores. |
CVE-2026-41937 | High | 7.2 | — | 2026-05-14 | Vvveb before 1.0.8.3 contains an unrestricted file upload vulnerability in the plugin upload endpoint that allows super_admin users to execute arbitrary PHP code by uploading a malicious plugin ZIP file. |
CVE-2026-41935 | High | 7.1 | — | 2026-05-14 | Vvveb before 1.0.8.3 contains an uncontrolled recursion vulnerability in the admin controller dispatch cycle where Base::init() repeatedly invokes permission() on error handlers, causing infinite recursion until PHP memory limits are exhau… |
CVE-2026-44366 | Medium | 6.1 | — | 2026-05-15 | Vvveb is a powerful and easy to use CMS with page builder to build websites, blogs or ecommerce stores. |
CVE-2026-41932 | Medium | 6.1 | — | 2026-05-14 | Vvveb before 1.0.8.3 contains a stored cross-site scripting vulnerability in the customer signup flow where the Signup::addUser() controller copies raw POST username values into the display_name field before sanitization occurs. |
CVE-2026-41933 | Medium | 5.3 | — | 2026-05-14 | Vvveb before 1.0.8.3 contains a directory listing information disclosure vulnerability that allows unauthenticated attackers to enumerate files and directories by accessing multiple paths lacking proper index directives in .htaccess files. |
CVE-2026-45800 | — | — | — | 2026-05-15 | Vvveb is a powerful and easy to use CMS with page builder to build websites, blogs or ecommerce stores. |
CVE-2026-45622 | — | — | — | 2026-05-15 | Vvveb is a powerful and easy to use CMS with page builder to build websites, blogs or ecommerce stores. |
CVE-2026-45616 | — | — | — | 2026-05-15 | Vvveb is a powerful and easy to use CMS with page builder to build websites, blogs or ecommerce stores. |
Gotenberg · 10 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-42589 | Critical | 9.8 | — | 2026-05-14 | Gotenberg is a Docker-powered stateless API for PDF files. |
CVE-2026-42596 | Critical | 9.4 | — | 2026-05-14 | Gotenberg is a Docker-powered stateless API for PDF files. |
CVE-2026-42595 | High | 8.6 | — | 2026-05-14 | Gotenberg is a Docker-powered stateless API for PDF files. |
CVE-2026-42591 | High | 8.2 | — | 2026-05-14 | Gotenberg is a Docker-powered stateless API for PDF files. |
CVE-2026-42590 | High | 8.2 | — | 2026-05-14 | Gotenberg is a Docker-powered stateless API for PDF files. |
CVE-2026-40893 | High | 8.2 | — | 2026-05-14 | Gotenberg is a Docker-powered stateless API for PDF files. |
CVE-2026-42594 | High | 7.5 | — | 2026-05-14 | Gotenberg is a Docker-powered stateless API for PDF files. |
CVE-2026-42597 | Medium | 5.9 | — | 2026-05-14 | Gotenberg is a Docker-powered stateless API for PDF files. |
CVE-2026-42593 | Medium | 5.3 | — | 2026-05-14 | Gotenberg is a Docker-powered stateless API for PDF files. |
CVE-2026-42592 | Medium | 5.3 | — | 2026-05-14 | Gotenberg is a Docker-powered stateless API for PDF files. |
Grafana · 10 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-33376 | High | 7.4 | — | 2026-05-13 | When using an IPv6 allow-list for the Auth Proxy feature, it defaults to /32 addresses. |
CVE-2026-33377 | High | 7.1 | — | 2026-05-13 | An Editor can overwrite a dashboard not owned by them to acquire admin on that specific dashboard. |
CVE-2026-33378 | Medium | 6.5 | — | 2026-05-13 | Using the $__timeGroup macro, one can achieve an OOM by overloading the server. |
CVE-2026-28383 | Medium | 6.5 | — | 2026-05-13 | A request to the Grafana plugin resources endpoint can cause unbounded memory allocation by reading the entire request body into memory. |
CVE-2026-28380 | Medium | 6.5 | — | 2026-05-13 | Any Editor could delete any snapshot, even if they have no access to read or write them. |
CVE-2026-28379 | Medium | 6.5 | — | 2026-05-13 | A race condition in Grafana Live allows authenticated users with Viewer role to trigger a server crash by sending concurrent requests that cause a fatal map access error. |
CVE-2026-28376 | Medium | 6.5 | — | 2026-05-13 | The Grafana Live push endpoint can be exploited to cause unbounded memory allocation by sending a large or streaming request body, potentially leading to out-of-memory conditions. |
CVE-2026-33380 | Medium | 6.3 | — | 2026-05-13 | A vulnerability in SQL Expressions allows an authenticated attacker to read arbitrary files from the Grafana server's filesystem. |
CVE-2026-33381 | Medium | 5.9 | — | 2026-05-13 | When a user's access to mint tokens for a service account is revoked, it is sometimes still possible to do so for a few seconds after the event. |
CVE-2026-28374 | Medium | 4.3 | — | 2026-05-13 | Editors could delete any annotation, even those they do not have read access to. |
Protobufjs · 10 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44293 | High | 8.8 | — | 2026-05-13 | protobufjs compiles protobuf definitions into JavaScript (JS) functions. |
CVE-2026-44295 | High | 8.7 | — | 2026-05-13 | protobufjs-cli is the command line add-on for protobuf.js. |
CVE-2026-44291 | High | 8.1 | — | 2026-05-13 | protobufjs compiles protobuf definitions into JavaScript (JS) functions. |
CVE-2026-42290 | High | 7.8 | — | 2026-05-13 | protobufjs-cli is the command line add-on for protobuf.js. |
CVE-2026-44290 | High | 7.5 | — | 2026-05-13 | protobufjs compiles protobuf definitions into JavaScript (JS) functions. |
CVE-2026-44289 | High | 7.5 | — | 2026-05-13 | protobufjs compiles protobuf definitions into JavaScript (JS) functions. |
CVE-2026-45740 | Medium | 5.3 | — | 2026-05-13 | protobufjs compiles protobuf definitions into JavaScript (JS) functions. |
CVE-2026-44294 | Medium | 5.3 | — | 2026-05-13 | protobufjs compiles protobuf definitions into JavaScript (JS) functions. |
CVE-2026-44292 | Medium | 5.3 | — | 2026-05-13 | protobufjs compiles protobuf definitions into JavaScript (JS) functions. |
CVE-2026-44288 | Medium | 5.3 | — | 2026-05-13 | protobufjs compiles protobuf definitions into JavaScript (JS) functions. |
Cubecart · 9 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-45714 | Critical | 9.1 | — | 2026-05-13 | CubeCart is an ecommerce software solution. |
CVE-2026-45053 | Critical | 9.1 | — | 2026-05-13 | CubeCart is an ecommerce software solution. |
CVE-2026-44377 | Critical | 9.1 | — | 2026-05-13 | CubeCart is an ecommerce software solution. |
CVE-2026-45055 | High | 8.1 | — | 2026-05-13 | CubeCart is an ecommerce software solution. |
CVE-2026-45708 | High | 7.2 | — | 2026-05-13 | CubeCart is an ecommerce software solution. |
CVE-2026-39358 | High | 7.2 | — | 2026-05-13 | CubeCart is an ecommerce software solution. |
CVE-2026-44376 | Medium | 6.1 | — | 2026-05-13 | CubeCart is an ecommerce software solution. |
CVE-2026-45054 | Medium | 4.9 | — | 2026-05-13 | CubeCart is an ecommerce software solution. |
CVE-2026-39428 | Medium | 4.8 | — | 2026-05-13 | CubeCart is an ecommerce software solution. |
Hcl · 9 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-62313 | Medium | 5.4 | — | 2026-05-14 | HCL AION is affected by a vulnerability where adequate protections against brute-force attempts are not enforced. |
CVE-2025-62310 | Medium | 5.4 | — | 2026-05-14 | HCL AION is affected by a vulnerability where encryption is not enforced for certain data transmissions or operations. |
CVE-2025-62308 | Medium | 5.1 | — | 2026-05-14 | HCL AION is affected by a vulnerability where sensitive backend infrastructure details may be exposed. |
CVE-2025-62305 | Medium | 5.1 | — | 2026-05-14 | HCL AION is affected by a vulnerability where certain operations may trigger out-of-band interactions, potentially resulting in unintended disclosure of sensitive information. |
CVE-2025-62311 | Medium | 4.3 | — | 2026-05-14 | HCL AION is affected by a vulnerability where backend service details may be transmitted over insecure HTTP channels. |
CVE-2025-62312 | Low | 3.0 | — | 2026-05-14 | HCL AION is affected by a vulnerability where basic authorization tokens are used for authentication. |
CVE-2025-62317 | Low | 2.6 | — | 2026-05-14 | HCL AION is affected by a vulnerability where sensitive information may be included in URL parameters. |
CVE-2025-62309 | Low | 2.6 | — | 2026-05-14 | HCL AION is affected by a vulnerability where auto-complete functionality is enabled for certain input fields. |
CVE-2025-62316 | Low | 2.3 | — | 2026-05-14 | HCL AION is affected by a vulnerability where certain security-related HTTP response headers are not properly configured. |
Intel · 9 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-20767 | High | 7.8 | — | 2026-05-12 | Improper input validation for some Intel(R) QAT software drivers for Windows before version 1.13 within Ring 3: User Applications may allow an escalation of privilege. |
CVE-2026-20714 | High | 7.8 | — | 2026-05-12 | Out-of-bounds write for some Intel(R) QAT software drivers for Windows before version 1.13 within Ring 3: User Applications may allow a escalation of privilege. |
CVE-2026-20905 | Medium | 6.6 | — | 2026-05-12 | Improper input validation for some Intel(R) QAT software drivers for Windows before version 2.6 within Ring 3: User Applications may allow a denial of service. |
CVE-2026-20782 | Medium | 6.6 | — | 2026-05-12 | Buffer overflow for some Intel(R) QAT software drivers for Windows before version 1.13 within Ring 3: User Applications may allow a denial of service. |
CVE-2026-20717 | Medium | 6.6 | — | 2026-05-12 | Improper input validation for some Intel(R) QAT software drivers for Windows before version 1.13 within Ring 3: User Applications may allow a denial of service. |
CVE-2026-20771 | Medium | 6.1 | — | 2026-05-12 | Null pointer dereference for some Intel(R) QAT software drivers for Windows before version 1.13 within Ring 3: User Applications may allow a denial of service. |
CVE-2026-20914 | Medium | 5.5 | — | 2026-05-12 | Null pointer dereference for some Intel(R) QAT software drivers for Windows before version 2.6.0 within Ring 3: User Applications may allow a denial of service. |
CVE-2026-20881 | Medium | 5.5 | — | 2026-05-12 | Divide by zero for some Intel(R) QAT software drivers for Windows before version 1.13 within Ring 3: User Applications may allow a denial of service. |
CVE-2026-20793 | Low | 3.3 | — | 2026-05-12 | Unchecked return value for some Intel(R) QAT software drivers for Windows before version 1.13 within Ring 3: User Applications may allow a denial of service. |
Academysoftwarefoundation · 8 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-43909 | High | 8.8 | — | 2026-05-14 | OpenImageIO is a toolset for reading, writing, and manipulating image files of any image file format relevant to VFX / animation. |
CVE-2026-43908 | High | 8.8 | — | 2026-05-14 | OpenImageIO is a toolset for reading, writing, and manipulating image files of any image file format relevant to VFX / animation. |
CVE-2026-43907 | High | 8.3 | — | 2026-05-14 | OpenImageIO is a toolset for reading, writing, and manipulating image files of any image file format relevant to VFX / animation. |
CVE-2026-43906 | High | 7.8 | — | 2026-05-14 | OpenImageIO is a toolset for reading, writing, and manipulating image files of any image file format relevant to VFX / animation. |
CVE-2026-43905 | High | 7.8 | — | 2026-05-14 | OpenImageIO is a toolset for reading, writing, and manipulating image files of any image file format relevant to VFX / animation. |
CVE-2026-43904 | High | 7.8 | — | 2026-05-14 | OpenImageIO is a toolset for reading, writing, and manipulating image files of any image file format relevant to VFX / animation. |
CVE-2026-43903 | High | 7.8 | — | 2026-05-14 | OpenImageIO is a toolset for reading, writing, and manipulating image files of any image file format relevant to VFX / animation. |
CVE-2026-43996 | Medium | 5.5 | — | 2026-05-14 | OpenImageIO is a toolset for reading, writing, and manipulating image files of any image file format relevant to VFX / animation. |
Curl · 8 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-6276 | High | 7.5 | — | 2026-05-13 | Using libcurl, when a custom `Host:` header is first set for an HTTP request and a second request is subsequently done using the same *easy handle* but without the custom `Host:` header set, the second request would use stale information a… |
CVE-2026-5773 | High | 7.5 | — | 2026-05-13 | libcurl might in some circumstances reuse the wrong connection for SMB(S) transfers. |
CVE-2026-5545 | Medium | 6.5 | — | 2026-05-13 | libcurl might in some circumstances reuse the wrong connection when asked to do an authenticated HTTP(S) request after a Negotiate-authenticated one, when both use the same host. |
CVE-2026-6253 | Medium | 5.9 | — | 2026-05-13 | curl might erroneously pass on credentials for a first proxy to a second proxy. |
CVE-2026-4873 | Medium | 5.9 | — | 2026-05-13 | A vulnerability exists where a connection requiring TLS incorrectly reuses an existing unencrypted connection from the same connection pool. |
CVE-2026-7168 | Medium | 5.3 | — | 2026-05-13 | Successfully using libcurl to do a transfer over a specific HTTP proxy (`proxyA`) with **Digest** authentication and then changing the proxy host to a second one (`proxyB`) for a second transfer, reusing the same handle, makes libcurl wron… |
CVE-2026-7009 | Medium | 5.3 | — | 2026-05-13 | When curl is told to use the Certificate Status Request TLS extension, often referred to as *OCSP stapling*, to verify that the server certificate is valid, it fails to detect OCSP problems and instead wrongly consider the response as fine. |
CVE-2026-6429 | Medium | 5.3 | — | 2026-05-13 | When asked to both use a `.netrc` file for credentials and to follow HTTP redirects, libcurl could leak the password used for the first host to the followed-to host under certain circumstances. |
Io.netty · 8 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-42587 | High | 7.5 | — | 2026-05-13 | Netty is an asynchronous, event-driven network application framework. |
CVE-2026-42583 | High | 7.5 | — | 2026-05-13 | Netty is an asynchronous, event-driven network application framework. |
CVE-2026-42582 | High | 7.5 | — | 2026-05-13 | Netty is an asynchronous, event-driven network application framework. |
CVE-2026-42584 | High | 7.3 | — | 2026-05-13 | Netty is an asynchronous, event-driven network application framework. |
CVE-2026-42586 | Medium | 6.8 | — | 2026-05-13 | Netty is an asynchronous, event-driven network application framework. |
CVE-2026-42585 | Medium | 6.5 | — | 2026-05-13 | Netty is an asynchronous, event-driven network application framework. |
CVE-2026-42580 | Medium | 6.5 | — | 2026-05-13 | Netty is an asynchronous, event-driven network application framework. |
CVE-2026-44248 | Medium | 5.3 | — | 2026-05-13 | Netty is an asynchronous, event-driven network application framework. |
Mediawiki · 8 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-34092 | High | 7.5 | — | 2026-05-11 | Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Wikimedia Foundation MediaWiki. |
CVE-2026-34091 | High | 7.5 | — | 2026-05-11 | Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Wikimedia Foundation MediaWiki. |
CVE-2026-34090 | High | 7.5 | — | 2026-05-11 | Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Wikimedia Foundation CheckUser. |
CVE-2026-34088 | High | 7.5 | — | 2026-05-11 | Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Wikimedia Foundation MediaWiki. |
CVE-2026-34087 | High | 7.5 | — | 2026-05-11 | Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Wikimedia Foundation OATHAuth. |
CVE-2026-34095 | Medium | 6.1 | — | 2026-05-11 | Vulnerability in Wikimedia Foundation MediaWiki. |
CVE-2026-34093 | Medium | 5.3 | — | 2026-05-11 | Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Wikimedia Foundation MediaWiki. |
CVE-2026-34094 | Low | 3.8 | — | 2026-05-11 | Vulnerability in Wikimedia Foundation MediaWiki. |
Pgadmin · 8 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-7813 | Critical | 9.9 | — | 2026-05-11 | Authorization vulnerability in pgAdmin 4 server mode affecting Server Groups, Servers, Shared Servers, Background Processes, and Debugger modules. |
CVE-2026-7816 | High | 8.8 | — | 2026-05-11 | OS command injection (CWE-78) vulnerability in pgAdmin 4 Import/Export query export. |
CVE-2026-7815 | High | 8.8 | — | 2026-05-11 | SQL injection vulnerability in pgAdmin 4 Maintenance Tool. |
CVE-2026-7819 | High | 8.1 | — | 2026-05-11 | Symbolic-link path traversal (CWE-61, CWE-22) in pgAdmin 4 File Manager. |
CVE-2026-7818 | High | 7.0 | — | 2026-05-11 | Deserialization of untrusted data (CWE-502) in pgAdmin 4 FileBackedSessionManager. |
CVE-2026-7820 | Medium | 6.5 | — | 2026-05-11 | Improper restriction of excessive authentication attempts (CWE-307) in pgAdmin 4. |
CVE-2026-7817 | Medium | 6.5 | — | 2026-05-11 | Local file inclusion (LFI) and server-side request forgery (SSRF) vulnerabilities in pgAdmin 4 LLM API configuration endpoints. |
CVE-2026-7814 | Medium | 4.8 | — | 2026-05-11 | Stored cross-site scripting (XSS) vulnerability in pgAdmin 4 Browser Tree and Explain Visualizer modules. |
D-link · 7 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-8260 | High | 8.8 | — | 2026-05-11 | A vulnerability was found in D-Link DCS-935L up to 1.10.01. |
CVE-2026-8346 | Medium | 6.3 | — | 2026-05-12 | A vulnerability was detected in D-Link DIR-816 1.10CNB05_R1B011D88210. |
CVE-2026-8345 | Medium | 6.3 | — | 2026-05-11 | A security vulnerability has been detected in D-Link DIR-816 1.10CNB05_R1B011D88210. |
CVE-2026-8344 | Medium | 6.3 | — | 2026-05-11 | A weakness has been identified in D-Link DIR-816 1.10CNB05_R1B011D88210. |
CVE-2026-8273 | Medium | 4.7 | — | 2026-05-11 | A weakness has been identified in D-Link DNS-320 2.06B01. |
CVE-2026-8272 | Medium | 4.7 | — | 2026-05-11 | A security flaw has been discovered in D-Link DNS-320 2.06B01. |
CVE-2026-8271 | Medium | 4.7 | — | 2026-05-11 | A vulnerability was identified in D-Link DNS-320 2.06B01. |
Dell · 7 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-40636 | Critical | 9.8 | — | 2026-05-11 | Dell ECS versions 3.8.1.0 through 3.8.1.7 and Dell ObjectScale versions prior to 4.3.0.0, contains a use of hard-coded credentials vulnerability. |
CVE-2026-35071 | High | 8.2 | — | 2026-05-12 | Dell PowerScale InsightIQ, versions 6.0.0 through 6.2.0, contains an improper neutralization of special elements used in an OS command ('OS Command Injection') vulnerability. |
CVE-2026-32658 | High | 8.0 | — | 2026-05-11 | Dell Automation Platform versions prior to 2.0.0.0, contains a missing authorization vulnerability. |
CVE-2026-40638 | Medium | 6.7 | — | 2026-05-12 | Dell PowerScale InsightIQ, versions 5.0.0 through 6.2.0, contains an execution with unnecessary privileges vulnerability. |
CVE-2026-26946 | Medium | 6.7 | — | 2026-05-11 | Dell ECS versions 3.8.1.0 through 3.8.1.7 and Dell ObjectScale versions prior to 4.3.0.0, contains an improper privilege management vulnerability in the OS. |
CVE-2026-35157 | Medium | 5.8 | — | 2026-05-11 | Dell ECS versions 3.8.1.0 through 3.8.1.7 and Dell ObjectScale versions prior to 4.3.0.0, contains an improper neutralization of formula elements in a CSV File vulnerability in the UI. |
CVE-2025-43992 | Medium | 5.6 | — | 2026-05-11 | Dell ECS versions 3.8.1.0 through 3.8.1.7 and Dell ObjectScale versions prior to 4.3.0.0, contains an authentication bypass by assumed-immutable data vulnerability in Geo replication. |
Elecom Co.,ltd. · 7 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-42062 | Critical | 9.8 | — | 2026-05-13 | ELECOM wireless LAN access point devices contain an OS command injection in processing of username parameter. |
CVE-2026-40621 | Critical | 9.8 | — | 2026-05-13 | ELECOM wireless LAN access point devices do not require authentication to access some specific URLs. |
CVE-2026-35506 | High | 7.2 | — | 2026-05-13 | ELECOM wireless LAN access point devices contain an OS command injection vulnerability in processing of ping_ip_addr parameter. |
CVE-2026-25107 | Medium | 6.5 | — | 2026-05-13 | ELECOM wireless LAN access point devices use a hard-coded cryptographic key when creating backups of configuration files. |
CVE-2026-42948 | Medium | 4.8 | — | 2026-05-13 | Stored cross-site scripting vulnerability exists in ELECOM wireless LAN access point devices. |
CVE-2026-42961 | Medium | 4.3 | — | 2026-05-13 | ELECOM wireless LAN access point devices implement CSRF protection mechanism, but with inadequate handling of CSRF tokens. |
CVE-2026-42950 | Medium | 4.3 | — | 2026-05-13 | ELECOM wireless LAN access point devices do not check if language parameter has an appropriate value. |
Frappe · 7 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44442 | Critical | 9.9 | — | 2026-05-13 | ERPNext is a free and open source Enterprise Resource Planning tool. |
CVE-2026-44447 | High | 8.8 | — | 2026-05-13 | ERPNext is a free and open source Enterprise Resource Planning tool. |
CVE-2026-44446 | High | 8.8 | — | 2026-05-13 | ERPNext is a free and open source Enterprise Resource Planning tool. |
CVE-2026-44445 | Medium | 6.5 | — | 2026-05-13 | ERPNext is a free and open source Enterprise Resource Planning tool. |
CVE-2026-44440 | Medium | 6.5 | — | 2026-05-13 | ERPNext is a free and open source Enterprise Resource Planning tool. |
CVE-2026-44448 | Medium | 5.9 | — | 2026-05-13 | ERPNext is a free and open source Enterprise Resource Planning tool. |
CVE-2026-44441 | Medium | 5.0 | — | 2026-05-13 | ERPNext is a free and open source Enterprise Resource Planning tool. |
Jqlang · 7 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-43896 | Medium | 6.2 | — | 2026-05-11 | jq is a command-line JSON processor. |
CVE-2026-43894 | Medium | 6.2 | — | 2026-05-11 | jq is a command-line JSON processor. |
CVE-2026-44777 | Medium | 5.5 | — | 2026-05-11 | jq is a command-line JSON processor. |
CVE-2026-41257 | Medium | 5.5 | — | 2026-05-11 | jq is a command-line JSON processor. |
CVE-2026-41256 | Medium | 5.5 | — | 2026-05-11 | jq is a command-line JSON processor. |
CVE-2026-40612 | Medium | 5.5 | — | 2026-05-11 | jq is a command-line JSON processor. |
CVE-2026-43895 | Medium | 4.4 | — | 2026-05-11 | jq is a command-line JSON processor. |
M2team · 7 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44215 | Medium | 4.4 | — | 2026-05-12 | NanaZip is an open source file archive. |
CVE-2026-42446 | Medium | 4.4 | — | 2026-05-12 | NanaZip is an open source file archive. |
CVE-2026-42445 | Low | 3.3 | — | 2026-05-12 | NanaZip is an open source file archive. |
CVE-2026-42444 | Low | 3.3 | — | 2026-05-12 | NanaZip is an open source file archive. |
CVE-2026-42443 | Low | 3.3 | — | 2026-05-12 | NanaZip is an open source file archive. |
CVE-2026-42442 | Low | 3.3 | — | 2026-05-12 | NanaZip is an open source file archive. |
CVE-2026-42355 | Low | 3.3 | — | 2026-05-12 | NanaZip is an open source file archive. |
Siyuan-note · 7 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-45375 | Critical | 9.0 | — | 2026-05-14 | SiYuan is an open-source personal knowledge management system. |
CVE-2026-44586 | High | 8.3 | — | 2026-05-14 | SiYuan is an open-source personal knowledge management system. |
CVE-2026-45148 | Medium | 4.3 | — | 2026-05-14 | SiYuan is an open-source personal knowledge management system. |
CVE-2026-45147 | Medium | 4.3 | — | 2026-05-14 | SiYuan is an open-source personal knowledge management system. |
CVE-2026-45371 | — | — | — | 2026-05-14 | SiYuan is an open-source personal knowledge management system. |
CVE-2026-44670 | — | — | — | 2026-05-14 | SiYuan is an open-source personal knowledge management system. |
CVE-2026-44588 | — | — | — | 2026-05-14 | SiYuan is an open-source personal knowledge management system. |
Advplyr · 6 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-42883 | Medium | 6.5 | — | 2026-05-11 | Audiobookshelf is a self-hosted audiobook and podcast server. |
CVE-2026-42886 | Medium | 4.9 | — | 2026-05-11 | Audiobookshelf is a self-hosted audiobook and podcast server. |
CVE-2026-42887 | Medium | 4.5 | — | 2026-05-11 | Audiobookshelf is a self-hosted audiobook and podcast server. |
CVE-2026-42885 | Medium | 4.3 | — | 2026-05-11 | Audiobookshelf is a self-hosted audiobook and podcast server. |
CVE-2026-42884 | Medium | 4.3 | — | 2026-05-11 | Audiobookshelf is a self-hosted audiobook and podcast server. |
CVE-2026-42888 | — | — | — | 2026-05-11 | Audiobookshelf is a self-hosted audiobook and podcast server. |
Dnsmasq · 6 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-4892 | High | 8.4 | — | 2026-05-11 | A heap-based out-of-bounds write vulnerability in the DHCPv6 implementation of dnsmasq allows local attackers to execute arbitrary code with root privileges via a crafted DHCPv6 packet. |
CVE-2026-4890 | High | 7.5 | — | 2026-05-11 | A Denial of Service (DoS) vulnerability in the DNSSEC validation of dnsmasq allows remote attackers to cause a denial of service via a crafted DNS packet. |
CVE-2026-5172 | High | 7.3 | — | 2026-05-11 | A buffer overflow in dnsmasq’s extract_addresses() function allows an attacker to trigger a heap out-of-bounds read and crash by exploiting a malformed DNS response, enabling extract_name() to advance the pointer past the record’s end. |
CVE-2026-2291 | High | 7.3 | — | 2026-05-11 | dnsmasqs extract_name() function can be abused to cause a heap buffer overflow, allowing an attacker to inject false DNS cache entries, which could result in DNS lookups to redirect to an attacker-controlled IP address, or to cause a DoS. |
CVE-2026-4893 | Medium | 5.3 | — | 2026-05-11 | An information disclosure vulnerability in dnsmasq allows remote attackers to bypass source checks via a crafted DNS packet with RFC 7871 client subnet information. |
CVE-2026-4891 | Medium | 5.3 | — | 2026-05-11 | A heap-based out-of-bounds read vulnerability in the DNSSEC validation of dnsmasq allows remote attackers to cause a denial of service via a crafted DNS packet. |
Fleetdm · 6 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-26191 | Critical | 9.8 | — | 2026-05-14 | Fleet is open source device management software. |
CVE-2026-46356 | High | 7.5 | — | 2026-05-14 | Fleet is open source device management software. |
CVE-2026-24899 | High | 7.5 | — | 2026-05-14 | Fleet is open source device management software. |
CVE-2026-23998 | High | 7.5 | — | 2026-05-14 | Fleet is open source device management software. |
CVE-2026-26062 | Medium | 6.5 | — | 2026-05-14 | Fleet is open source device management software. |
CVE-2026-24000 | Medium | 5.3 | — | 2026-05-14 | Fleet is open source device management software. |
Labredescefetrj · 6 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-45026 | Medium | 6.8 | — | 2026-05-11 | WeGIA is a web manager for charitable institutions. |
CVE-2026-45025 | Medium | 6.8 | — | 2026-05-11 | WeGIA is a web manager for charitable institutions. |
CVE-2026-42872 | Medium | 6.1 | — | 2026-05-11 | WeGIA is a web manager for charitable institutions. |
CVE-2026-42873 | Unrated | — | — | 2026-05-11 | WeGIA is a web manager for charitable institutions. |
CVE-2026-42870 | — | — | — | 2026-05-11 | WeGIA is a web manager for charitable institutions. |
CVE-2026-42871 | — | — | — | 2026-05-11 | WeGIA is a web manager for charitable institutions. |
Lfprojects · 6 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-2652 | High | 8.6 | — | 2026-05-15 | A vulnerability in mlflow/mlflow versions 3.9.0 and earlier allows unauthenticated access to certain FastAPI routes when the server is started with authentication enabled (`--app-name basic-auth`) and served via uvicorn (ASGI). |
CVE-2026-2614 | High | 7.5 | — | 2026-05-11 | A vulnerability in the `_create_model_version()` handler of `mlflow/server/handlers.py` in mlflow/mlflow versions 3.9.0 and earlier allows an unauthenticated remote attacker to read arbitrary files from the server's filesystem. |
CVE-2026-2393 | High | 7.1 | — | 2026-05-11 | A Server-Side Request Forgery (SSRF) vulnerability exists in MLflow versions prior to 3.9.0. |
CVE-2026-44429 | Medium | 5.4 | — | 2026-05-14 | The MCP Registry provides MCP clients with a list of MCP servers, like an app store for MCP servers. |
CVE-2026-44428 | Medium | 4.7 | — | 2026-05-14 | The MCP Registry provides MCP clients with a list of MCP servers, like an app store for MCP servers. |
CVE-2026-44430 | Medium | 4.0 | — | 2026-05-14 | The MCP Registry provides MCP clients with a list of MCP servers, like an app store for MCP servers. |
Mongodb · 6 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-8053 | High | 8.8 | — | 2026-05-13 | An issue in MongoDB Server's time-series collection implementation allows an authenticated user with database write privileges to trigger an out-of-bounds memory write in the mongod process. |
CVE-2026-8336 | High | 7.5 | — | 2026-05-13 | After invoking $_internalJsEmit, which is not intended to be directly accessible, or mapreduce command’s map function in a certain way, an authenticated user can subsequently crash mongod when the server-side JavaScript engine (through $wh… |
CVE-2026-8199 | Medium | 6.5 | — | 2026-05-13 | An authenticated user can cause excess memory usage via bitwise match expression AST processing of $bitsAllSet, $bitsAnySet, $bitsAllClear, and $bitsAnyClear. |
CVE-2026-8201 | Medium | 6.4 | — | 2026-05-13 | A use-after-free vulnerability exists in MongoDB's Field-Level Encryption (FLE) query analysis component, affecting client-side uses of mongocryptd and crypt_shared. |
CVE-2026-8202 | Medium | 4.3 | — | 2026-05-13 | Using a densely populated chars mask and a large input string in the MongoDB aggregation operators $trim, $ltrim, and $rtrim, an authenticated user with aggregation permissions can pin CPU utilization at 100% for an extended period of time. |
CVE-2026-8200 | Low | 2.7 | — | 2026-05-13 | When schema validation is enabled on a collection and an update or insert would violate the collection's schema, the local server log message generated may not have all user data redacted. This issue impacts MongoDB Server v7.0 versions… |
Samsung · 6 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-21020 | High | 7.8 | — | 2026-05-13 | Improper export of android application components in OmaCP prior to SMR May-2026 Release 1 allows local attackers to trigger privileged functions. |
CVE-2026-21021 | Medium | 6.8 | — | 2026-05-13 | Improper input validation in Routines prior to SMR May-2026 Release 1 allows physical attackers to launch privileged activity. |
CVE-2026-21018 | Medium | 6.7 | — | 2026-05-13 | Out-of-bounds write in SveService prior to SMR May-2026 Release 1 allows local privileged attackers to execute arbitrary code. |
CVE-2026-21022 | Medium | 5.5 | — | 2026-05-13 | Improper handling of insufficient permissions in Routines prior to SMR May-2026 Release 1 allows local attackers to access sensitive information. |
CVE-2026-21016 | Medium | 5.5 | — | 2026-05-13 | Incorrect privilege assignment in LocationManager prior to SMR May-2026 Release 1 allows local attackers to access sensitive information. |
CVE-2026-21015 | Medium | 5.5 | — | 2026-05-13 | Incorrect default permissions in FactoryCamera prior to SMR May-2026 Release 1 allows local attacker to access unique identifier. |
Webpros · 6 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-29204 | Critical | 9.1 | — | 2026-05-12 | Insufficient ownership check in `clientarea.php` allows an authenticated client area user to submit requests using another user’s `addonId` without any ownership validation leading to unauthorized access to the victim's account. |
CVE-2026-29205 | High | 8.6 | — | 2026-05-13 | Incorrect privileges management and insufficient path filtering allow to read arbitrary file on the server via the cpdavd attachment download endpoints. |
CVE-2026-32993 | High | 8.3 | — | 2026-05-13 | Improper sanitization of the `status` query parameter of the `/unprotected/nova_error` endpoint allows unauthenticated attacker to inject arbitrary HTTP header to the response. |
CVE-2026-32992 | High | 8.2 | — | 2026-05-13 | SSL verification is disabled in the DNS Cluster system. |
CVE-2026-29206 | High | 8.1 | — | 2026-05-13 | Insufficient sanitization of SQL queries in the `sqloptimizer` utility script allows SQL Injections on behalf of the root user if Slow Query logging is enabled. |
CVE-2026-32991 | High | 7.1 | — | 2026-05-13 | Improper authorization checks of team members privileges allow a team member to escalate privileges to the team owner account. |
Wso2 · 6 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-10470 | High | 8.6 | — | 2026-05-11 | The Magic Link authentication flow accepts multiple invalid authentication requests without adequate rate limiting or resource control, leading to uncontrolled memory usage growth. |
CVE-2025-10908 | High | 7.3 | — | 2026-05-11 | Due to a lack of user account state validation during authentication, locked user accounts can be successfully authenticated using Magic Link or Pass Key methods. |
CVE-2025-9973 | Medium | 6.4 | — | 2026-05-11 | Due to not validating the organization context when executing adaptive authentication flows, the WSO2 Identity Server allows adaptive authentication logic to be triggered on unintended organizations. |
CVE-2025-8325 | Medium | 6.3 | — | 2026-05-11 | The software fails to enforce role-based access controls for certain Gateway API invocations. |
CVE-2025-8154 | Medium | 5.3 | — | 2026-05-11 | In Webhook API invocations, the component accepts user-supplied input for HTTP request headers without sufficient validation or sanitization, allowing these headers to be injected into HTTP responses. |
CVE-2024-0391 | Medium | 5.3 | — | 2026-05-11 | The check user account lock states feature within the email OTP flow fails to validate user input, allowing an attacker to infer the existence of registered user accounts. |
Artica · 5 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-34187 | Critical | 9.8 | — | 2026-05-12 | Improper Neutralization of Special Elements used in an SQL Command vulnerability allows SQL Injection via graph container parameter. |
CVE-2026-30805 | Critical | 9.1 | — | 2026-05-12 | Insecure Default Initialization of Resource vulnerability allows Authentication Bypass via API access. |
CVE-2026-30810 | High | 8.8 | — | 2026-05-12 | Server-Side Request Forgery vulnerability allows Privilege Escalation via API Checker extension. |
CVE-2026-30807 | High | 8.8 | — | 2026-05-12 | Cross-Site Request Forgery vulnerability allows an attacker to perform unauthorized actions via crafted web page. |
CVE-2026-30808 | High | 8.1 | — | 2026-05-12 | Session Fixation vulnerability allows Session Hijacking via crafted session ID. |
Devs Palace · 5 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-8262 | Low | 2.4 | — | 2026-05-11 | A vulnerability was identified in Devs Palace ERP Online up to 4.0.0. |
CVE-2026-8256 | Low | 2.4 | — | 2026-05-11 | A security vulnerability has been detected in Devs Palace ERP Online up to 4.0.0. |
CVE-2026-8255 | Low | 2.4 | — | 2026-05-11 | A weakness has been identified in Devs Palace ERP Online up to 4.0.0. |
CVE-2026-8254 | Low | 2.4 | — | 2026-05-11 | A security flaw has been discovered in Devs Palace ERP Online up to 4.0.0. |
CVE-2026-8253 | Low | 2.4 | — | 2026-05-11 | A vulnerability was identified in Devs Palace ERP Online up to 4.0.0. |
Dovecot · 5 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-27851 | High | 7.4 | — | 2026-05-12 | When safe filter is used with variable expansion, all following pipelines on the same string are incorrectly interpreted as safe too, enabling unsafe data to be unescaped. |
CVE-2026-33603 | Medium | 6.8 | — | 2026-05-12 | Attacker can use a specially crafted base64 exchange between Dovecot and Client to fake SCRAM TLS channel binding. |
CVE-2026-40016 | Medium | 5.3 | — | 2026-05-12 | Attacker can upload a malicious Sieve script over ManageSieve service (or locally) to bypass configured CPU time limits for Sieve up to 130 times of the configured limit. |
CVE-2026-42006 | Medium | 4.3 | — | 2026-05-12 | An attacker can cause uncontrolled memory usage with excessive bracing over IMAP. |
CVE-2026-40020 | Low | 3.1 | — | 2026-05-12 | Attacker can use the IMAP SETACL command to inject the anyone permission to user's dovecot-acl file even if imap_acl_allow_anyone=no. |
Dragonmonk111 · 5 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-43992 | Critical | 9.8 | — | 2026-05-12 | JunoClaw is an agentic AI platform built on Juno Network. |
CVE-2026-43989 | High | 8.5 | — | 2026-05-12 | JunoClaw is an agentic AI platform built on Juno Network. |
CVE-2026-43991 | High | 8.4 | — | 2026-05-12 | JunoClaw is an agentic AI platform built on Juno Network. |
CVE-2026-43990 | High | 8.4 | — | 2026-05-12 | JunoClaw is an agentic AI platform built on Juno Network. |
CVE-2026-43993 | High | 8.2 | — | 2026-05-12 | JunoClaw is an agentic AI platform built on Juno Network. |
Flightphp · 5 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-42550 | High | 8.8 | — | 2026-05-13 | Flight is an extensible micro-framework for PHP. |
CVE-2026-42552 | High | 7.5 | — | 2026-05-13 | Flight is an extensible micro-framework for PHP. |
CVE-2026-42551 | High | 7.5 | — | 2026-05-13 | Flight is an extensible micro-framework for PHP. |
CVE-2026-42549 | Medium | 4.4 | — | 2026-05-13 | Flight is an extensible micro-framework for PHP. |
CVE-2026-42548 | — | — | — | 2026-05-13 | Flight is an extensible micro-framework for PHP. |
Hewlett Packard Enterprise (Hpe) · 5 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-23819 | High | 8.8 | — | 2026-05-12 | A vulnerability in the web-based management interface of Access Points running AOS-10 and AOS-8 Instant could allow an unauthenticated remote attacker to execute arbitrary JavaScript code in a victim's browser within the same local network. |
CVE-2026-23823 | High | 7.2 | — | 2026-05-12 | A vulnerability in the command line interface of Access Points running AOS-10 could allow an authenticated remote attacker to perform command injection. |
CVE-2026-23821 | High | 7.2 | — | 2026-05-12 | A vulnerability in the configuration processing logic of Access Points running AOS-10 could allow an authenticated remote attacker to execute system commands under certain pre-existing conditions. |
CVE-2026-23820 | High | 7.2 | — | 2026-05-12 | A vulnerability in the command line interface of Access Points running AOS-10 and AOS-8 Instant could allow an authenticated remote attacker to execute system commands in a restricted shell environment. |
CVE-2026-23822 | Medium | 5.3 | — | 2026-05-12 | A vulnerability in the XML handling component of AOS-8 DHCP services could allow an unauthenticated remote attacker to trigger a denial-of-service condition. |
Hono · 5 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44456 | Medium | 6.5 | — | 2026-05-13 | Hono is a Web application framework that provides support for any JavaScript runtime. |
CVE-2026-44457 | Medium | 5.3 | — | 2026-05-13 | Hono is a Web application framework that provides support for any JavaScript runtime. |
CVE-2026-44455 | Medium | 4.7 | — | 2026-05-13 | Hono is a Web application framework that provides support for any JavaScript runtime. |
CVE-2026-44458 | Medium | 4.3 | — | 2026-05-13 | Hono is a Web application framework that provides support for any JavaScript runtime. |
CVE-2026-44459 | Low | 3.8 | — | 2026-05-13 | Hono is a Web application framework that provides support for any JavaScript runtime. |
Ivanti · 5 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-8043 | Critical | 9.6 | — | 2026-05-12 | External control of a file name in Ivanti Xtraction before version 2026.2 allows a remote authenticated attacker to read sensitive files and write arbitrary HTML files to a web directory, leading to information disclosure and possible clie… |
CVE-2026-8111 | High | 8.8 | — | 2026-05-12 | SQL injection in the web console of Ivanti Endpoint Manager before version 2024 SU6 allows a remote authenticated attacker to achieve remote code execution. |
CVE-2026-8110 | High | 7.8 | — | 2026-05-12 | Incorrect permissions assignment in the agent of Ivanti Endpoint Manager before version 2024 SU6 allows a local authenticated attacker to escalate their privileges. |
CVE-2026-8051 | High | 7.2 | — | 2026-05-12 | OS command injection in Ivanti Virtual Traffic Manager before version 22.9r4 allows a remote authenticated attacker with admin privileges to achieve remote code execution. |
CVE-2026-8109 | Medium | 6.5 | — | 2026-05-12 | An exposed dangerous method on the Core Server of Ivanti Endpoint Manager before version 2024 SU6 allows a remote authenticated attacker to leak access credentials. |
Meari · 5 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-33362 | High | 8.6 | — | 2026-05-11 | In Meari IoT SDK builds embedded in CloudEdge 5.5.0 (build 220), Arenti 1.8.1 (build 220), and white-label Android apps <= 1.8.x (latest observed), multiple security-critical secrets are hardcoded and shared, including API signing material… |
CVE-2026-33356 | High | 7.7 | — | 2026-05-11 | In Meari IoT Cloud MQTT Broker deployments running EMQX 4.x, any authenticated low-privilege account can subscribe to global wildcard topics and receive telemetry from devices the user does not own. |
CVE-2026-33361 | High | 7.5 | — | 2026-05-11 | In Meari IoT SDK image handling (libmrplayer.so) as observed in CloudEdge 5.5.0 (build 220), Arenti 1.8.1 (build 220), and related white-label apps (<= 1.8.x), baby monitor ".jpgx3" files use reversible XOR over only the first 1024 bytes w… |
CVE-2026-33359 | High | 7.5 | — | 2026-05-11 | In Meari IoT Cloud alert image storage on Alibaba OSS (latest observed; storage service version not disclosed), motion snapshots are retrievable without authentication, signed URLs, or expiry enforcement. |
CVE-2026-33357 | High | 7.5 | — | 2026-05-11 | In Meari client applications embedding "com.meari.sdk" (including CloudEdge 5.5.0 build 220, Arenti 1.8.1 build 220, and related white-label <= 1.8.x), the integrated call path to openapi-euce.mearicloud.com can be abused to retrieve WAN I… |
Mem0 · 5 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-31242 | Critical | 9.1 | — | 2026-05-12 | The mem0 v1.0.0 server lacks authentication and authorization controls for its memory reset functionality accessible via the DELETE /memories endpoint. |
CVE-2026-31244 | Medium | 6.5 | — | 2026-05-12 | The mem0 1.0.0 server lacks authentication and authorization controls for its memory deletion API endpoint (DELETE /memories/{memory_id}). |
CVE-2026-31243 | Medium | 6.5 | — | 2026-05-12 | The mem0 1.0.0 server lacks authentication and authorization controls for its memory reset and table re-creation functionality accessible via the DELETE /memories endpoint. |
CVE-2026-31241 | Medium | 6.5 | — | 2026-05-12 | The mem0 1.0.0 server lacks authentication and authorization controls for its memory deletion API endpoint (DELETE /memories). |
CVE-2026-31245 | Medium | 5.3 | — | 2026-05-12 | The mem0 1.0.0 server lacks authentication and authorization controls for its memory creation API endpoint (POST /memories). |
Misp · 5 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44380 | High | 7.2 | — | 2026-05-13 | MISP is an open source threat intelligence and sharing platform. |
CVE-2026-44381 | Medium | 5.3 | — | 2026-05-13 | MISP is an open source threat intelligence and sharing platform. |
CVE-2026-44379 | Medium | 5.3 | — | 2026-05-13 | MISP is an open source threat intelligence and sharing platform. |
CVE-2026-44364 | — | — | — | 2026-05-13 | MISP modules are autonomous modules that can be used to extend MISP for new services. |
CVE-2026-44363 | — | — | — | 2026-05-13 | MISP modules are autonomous modules that can be used to extend MISP for new services. |
Mozilla · 5 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-8401 | Critical | 9.8 | — | 2026-05-12 | Sandbox escape in the Profile Backup component. |
CVE-2026-8389 | High | 8.8 | — | 2026-05-12 | JIT miscompilation in the JavaScript Engine: JIT component. |
CVE-2026-8390 | High | 7.3 | — | 2026-05-12 | Use-after-free in the JavaScript: WebAssembly component. |
CVE-2026-8388 | Medium | 6.5 | — | 2026-05-12 | Incorrect boundary conditions in the JavaScript Engine: JIT component. |
CVE-2026-8391 | Medium | 5.3 | — | 2026-05-12 | Other issue in the JavaScript Engine component. |
Ninenines · 5 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-7790 | High | 7.5 | — | 2026-05-11 | Uncontrolled Resource Consumption vulnerability in ninenines cowlib (cow_http_te module) allows Excessive Allocation. |
CVE-2026-43968 | Medium | 4.0 | — | 2026-05-11 | Improper Neutralization of CRLF Sequences ('CRLF Injection') vulnerability in ninenines cowlib allows SSE event splitting and injection via unvalidated field values. |
CVE-2026-43969 | Low | 3.2 | — | 2026-05-11 | Improper Neutralization of CRLF Sequences ('CRLF Injection') vulnerability in ninenines cowlib allows HTTP request splitting and cookie smuggling via unvalidated cookie name and value fields. |
CVE-2026-8466 | — | — | — | 2026-05-13 | Allocation of Resources Without Limits or Throttling vulnerability in ninenines cowboy allows denial of service via unbounded buffer accumulation in multipart header parsing. |
CVE-2026-43970 | — | — | — | 2026-05-13 | Improper Handling of Highly Compressed Data (Data Amplification) vulnerability in ninenines cowlib allows unauthenticated remote denial of service via memory exhaustion. |
Outline · 5 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-43888 | High | 8.7 | — | 2026-05-11 | Outline is a service that allows for collaborative documentation. |
CVE-2026-43886 | High | 8.2 | — | 2026-05-11 | Outline is a service that allows for collaborative documentation. |
CVE-2026-43890 | High | 7.7 | — | 2026-05-11 | Outline is a service that allows for collaborative documentation. |
CVE-2026-43887 | High | 7.3 | — | 2026-05-11 | Outline is a service that allows for collaborative documentation. |
CVE-2026-43889 | Medium | 6.5 | — | 2026-05-11 | Outline is a service that allows for collaborative documentation. |
Pyload · 5 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-42313 | High | 8.3 | — | 2026-05-11 | pyLoad is a free and open-source download manager written in Python. |
CVE-2026-42315 | High | 8.1 | — | 2026-05-11 | pyLoad is a free and open-source download manager written in Python. |
CVE-2026-42312 | Medium | 6.8 | — | 2026-05-11 | pyLoad is a free and open-source download manager written in Python. |
CVE-2026-42314 | Medium | 6.5 | — | 2026-05-11 | pyLoad is a free and open-source download manager written in Python. |
CVE-2026-44226 | Medium | 5.3 | — | 2026-05-11 | pyLoad is a free and open-source download manager written in Python. |
Strapi · 5 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-27886 | High | 7.5 | — | 2026-05-14 | Strapi is an open source headless content management system. |
CVE-2026-22599 | High | 7.2 | — | 2026-05-14 | Strapi is an open source headless content management system. |
CVE-2026-22706 | Medium | 6.5 | — | 2026-05-14 | Strapi is an open source headless content management system. |
CVE-2026-22707 | Medium | 5.4 | — | 2026-05-14 | Strapi is an open source headless content management system. |
CVE-2025-64526 | Medium | 5.3 | — | 2026-05-14 | Strapi is an open source headless content management system. |
Torchbox · 5 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44200 | Medium | 6.5 | — | 2026-05-11 | Wagtail is an open source content management system built on Django. |
CVE-2026-44199 | Medium | 6.5 | — | 2026-05-11 | Wagtail is an open source content management system built on Django. |
CVE-2026-44197 | Medium | 6.5 | — | 2026-05-11 | Wagtail is an open source content management system built on Django. |
CVE-2026-44201 | Medium | 5.3 | — | 2026-05-11 | Wagtail is an open source content management system built on Django. |
CVE-2026-44198 | Medium | 4.3 | — | 2026-05-11 | Wagtail is an open source content management system built on Django. |
Axis · 4 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-0804 | Medium | 6.7 | — | 2026-05-12 | An ACAP configuration file lacked sufficient input validation, which could allow a path traversal attack leading to potential privilege escalation. |
CVE-2026-0541 | Medium | 6.7 | — | 2026-05-12 | ACAP applications can gain elevated privileges due to improper input validation during the installation process, potentially leading to privilege escalation. |
CVE-2026-0802 | Medium | 6.0 | — | 2026-05-12 | An ACAP configuration file lacked sufficient input validation, which could allow command injection and potentially lead to privilege escalation. |
CVE-2026-1185 | Medium | 5.4 | — | 2026-05-12 | A configuration file on the local file system had improper input validation which could allow code execution and potentially lead to privilege escalation. |
Barebox · 4 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-34963 | High | 8.4 | — | 2026-05-11 | barebox version prior to 2026.04.0 contains multiple memory-safety vulnerabilities in the EFI PE loader in efi/loader/pe.c where integer overflow in virtual image size computation using 32-bit arithmetic on section VirtualAddress and size… |
CVE-2026-34960 | Medium | 6.5 | — | 2026-05-11 | barebox prior to version 2026.04.0 contains an out-of-bounds read vulnerability in DHCP option parsing within the dhcp_message_type() function that fails to verify the options pointer remains within received packet bounds. |
CVE-2026-34962 | Medium | 6.2 | — | 2026-05-11 | barebox version prior to 2026.04.0 contains a denial-of-service vulnerability in ext4 directory parsing in fs/ext4/ext4_common.c where the ext4fs_iterate_dir() function fails to validate that directory entry length values are non-zero. |
CVE-2026-34961 | Medium | 6.2 | — | 2026-05-11 | barebox prior to version 2026.04.0 contains out-of-bounds read vulnerabilities in ext4 extent parsing due to missing validation of the eh_entries field against buffer capacity in fs/ext4/ext4_common.c. |
Churchcrm · 4 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-42288 | Critical | 10.0 | — | 2026-05-12 | ChurchCRM is an open-source church management system. |
CVE-2026-44547 | Critical | 9.6 | — | 2026-05-12 | ChurchCRM is an open-source church management system. |
CVE-2026-42289 | High | 8.8 | — | 2026-05-12 | ChurchCRM is an open-source church management system. |
CVE-2026-44548 | High | 8.1 | — | 2026-05-12 | ChurchCRM is an open-source church management system. |
Cisco · 4 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-20182 | Critical | 10.0 | KEV | 2026-05-14 | May 2026: This security advisory provides the details and fix information for a vulnerability that was discovered and fixed after the was disclosed in February 2026. |
CVE-2026-20224 | High | 8.6 | — | 2026-05-14 | A vulnerability in the web UI of Cisco Catalyst SD-WAN Manager, formerly SD-WAN vManage, could allow an unauthenticated, remote attacker to read arbitrary files that are stored in an affected system. |
CVE-2026-20210 | Medium | 5.4 | — | 2026-05-14 | A vulnerability in the web UI of Cisco Catalyst SD-WAN Manager, formerly SD-WAN vManage, could allow an authenticated, remote attacker with read-only permissions to modify configurations and perform unauthorized actions on an affected syst… |
CVE-2026-20209 | Medium | 5.4 | — | 2026-05-14 | A vulnerability in the web UI of Cisco Catalyst SD-WAN Manager, formerly SD-WAN vManage, could allow an authenticated, remote attacker with read-only permissions to elevate their privileges from low to high and perform actions as a high-pr… |
Ckan · 4 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-42031 | Critical | 9.8 | — | 2026-05-13 | CKAN is an open-source DMS (data management system) for powering data hubs and data portals. |
CVE-2026-42032 | Critical | 9.1 | — | 2026-05-13 | CKAN is an open-source DMS (data management system) for powering data hubs and data portals. |
CVE-2026-41132 | High | 7.4 | — | 2026-05-13 | CKAN is an open-source DMS (data management system) for powering data hubs and data portals. |
CVE-2026-41255 | Medium | 6.1 | — | 2026-05-13 | CKAN is an open-source DMS (data management system) for powering data hubs and data portals. |
Dani-garcia · 4 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-43912 | High | 8.7 | — | 2026-05-11 | Vaultwarden is a Bitwarden-compatible server written in Rust. |
CVE-2026-43913 | High | 8.1 | — | 2026-05-11 | Vaultwarden is a Bitwarden-compatible server written in Rust. |
CVE-2026-43914 | High | 7.3 | — | 2026-05-11 | Vaultwarden is a Bitwarden-compatible server written in Rust. |
CVE-2026-43911 | Medium | 6.8 | — | 2026-05-11 | Vaultwarden is a Bitwarden-compatible server written in Rust. |
Efwgrp · 4 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44260 | High | 8.1 | — | 2026-05-12 | efw4.X is an Enterprise Framework for Web. |
CVE-2026-44259 | Medium | 4.6 | — | 2026-05-12 | efw4.X is an Enterprise Framework for Web. |
CVE-2026-44258 | — | — | — | 2026-05-12 | efw4.X is an Enterprise Framework for Web. |
CVE-2026-44257 | — | — | — | 2026-05-12 | efw4.X is an Enterprise Framework for Web. |
Eugeny · 4 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-45035 | High | 8.8 | — | 2026-05-15 | Tabby (formerly Terminus) is a highly configurable terminal emulator. |
CVE-2026-45038 | High | 7.8 | — | 2026-05-15 | Tabby (formerly Terminus) is a highly configurable terminal emulator. |
CVE-2026-45037 | High | 7.1 | — | 2026-05-15 | Tabby (formerly Terminus) is a highly configurable terminal emulator. |
CVE-2026-45036 | High | 7.0 | — | 2026-05-15 | Tabby (formerly Terminus) is a highly configurable terminal emulator. |
Garmin · 4 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-27851 | Critical | 9.3 | — | 2026-05-13 | The locally served web site on the Garmin WDU (v1 1.4.6 and v2 5.0) allows a cross-site origin WebSocket hijacking attack. |
CVE-2025-27850 | High | 7.5 | — | 2026-05-13 | The locally served web site on the Garmin WDU (v1 1.4.6 and v2 5.0) allows a symlink attack. |
CVE-2025-27853 | High | 7.3 | — | 2026-05-13 | The locally served web site on the Garmin WDU (v1 1.4.6 and v2 5.0) allows its authentication to be bypassed. |
CVE-2025-27852 | Medium | 5.0 | — | 2026-05-13 | The locally served web site on the Garmin WDU (v1 1.4.6 and v2 5.0) allows a reflected cross site scripting (XSS) attack. |
Hashicorp · 4 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-7474 | High | 8.8 | — | 2026-05-12 | HashiCorp Nomad and Nomad Enterprise prior to 2.0.1 are vulnerable to code execution on the client host through a path traversal attack. |
CVE-2026-8052 | Medium | 6.0 | — | 2026-05-12 | HashiCorp Nomad’s exec2 task driver prior to 0.1.2 is vulnerable to arbitrary file read and write on the client host as the Nomad process user through a symlink attack. |
CVE-2026-6959 | Medium | 6.0 | — | 2026-05-12 | HashiCorp Nomad and Nomad Enterprise prior to 2.0.1 are vulnerable to arbitrary file read and write on the client host as the Nomad process user through a symlink attack. |
CVE-2026-5061 | Medium | 4.7 | — | 2026-05-12 | The consul-template library before version 0.42.0 is vulnerable to a sandbox path bypass in the file template helper that may allow reading an out-of-sandbox file. |
Infused Addons · 4 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-6510 | Critical | 9.8 | — | 2026-05-14 | The InfusedWoo Pro plugin for WordPress is vulnerable to privilege escalation via missing authorization in all versions up to, and including, 5.1.2. |
CVE-2026-6512 | Critical | 9.1 | — | 2026-05-14 | The InfusedWoo Pro plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 5.1.2. |
CVE-2026-6506 | High | 8.8 | — | 2026-05-14 | The InfusedWoo Pro plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 5.1.2. |
CVE-2026-6514 | High | 7.5 | — | 2026-05-14 | The InfusedWoo Pro plugin for WordPress is vulnerable to Arbitrary File Read in all versions up to, and including, 5.1.2 via the popup_submit. |
Netty · 4 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-42579 | High | 7.5 | — | 2026-05-13 | Netty is an asynchronous, event-driven network application framework. |
CVE-2026-42578 | High | 7.5 | — | 2026-05-13 | Netty is an asynchronous, event-driven network application framework. |
CVE-2026-42577 | High | 7.5 | — | 2026-05-13 | Netty is an asynchronous, event-driven network application framework. |
CVE-2026-42581 | Medium | 5.8 | — | 2026-05-13 | Netty is an asynchronous, event-driven network application framework. |
Opnsense · 4 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-45158 | Critical | 9.1 | — | 2026-05-13 | OPNsense is a FreeBSD based firewall and routing platform. |
CVE-2026-44194 | Critical | 9.1 | — | 2026-05-13 | OPNsense is a FreeBSD based firewall and routing platform. |
CVE-2026-44193 | Critical | 9.1 | — | 2026-05-13 | OPNsense is a FreeBSD based firewall and routing platform. |
CVE-2026-44195 | Medium | 5.3 | — | 2026-05-13 | OPNsense is a FreeBSD based firewall and routing platform. |
Reconurge · 4 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44352 | — | — | — | 2026-05-12 | Flowsint is an open-source OSINT graph exploration tool designed for cybersecurity investigation, transparency, and verification. |
CVE-2026-42158 | — | — | — | 2026-05-12 | Flowsint is an open-source OSINT graph exploration tool designed for cybersecurity investigation, transparency, and verification. |
CVE-2026-42157 | — | — | — | 2026-05-12 | Flowsint is an open-source OSINT graph exploration tool designed for cybersecurity investigation, transparency, and verification. |
CVE-2026-42156 | — | — | — | 2026-05-12 | Flowsint is an open-source OSINT graph exploration tool designed for cybersecurity investigation, transparency, and verification. |
Schneider Electric · 4 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-6332 | High | 7.5 | — | 2026-05-14 | CWE-312: Cleartext Storage of Sensitive Information vulnerability exists that could cause the disclosure of a sensitive information which could result in revealing protected source code and loss of confidentiality, When an authorized atta… |
CVE-2026-6866 | High | 7.5 | — | 2026-05-12 | CWE-1188 Initialization of a Resource with an Insecure Default vulnerability exists that could cause unauthorized disclosure of sensitive information when credentials revert to initial settings in rare circumstances, enabling unauthorized… |
CVE-2026-6865 | — | — | — | 2026-05-12 | CWE-22: Improper Limitation of a Pathname to a Restricted Directory (“Path Traversal”) vulnerability that could cause unauthorized access to sensitive files when user-supplied input is improperly handled during server-side file path proces… |
CVE-2026-4827 | — | — | — | 2026-05-12 | CWE‑331: Insufficient Entropy vulnerability exists that could lead to unauthorized access when an attacker on the network can exploit weaknesses in session‑management protections. |
Shellhub · 4 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44426 | Medium | 6.5 | — | 2026-05-13 | ShellHub is a centralized SSH gateway. |
CVE-2026-44424 | Medium | 6.5 | — | 2026-05-13 | ShellHub is a centralized SSH gateway. |
CVE-2026-44423 | Medium | 6.5 | — | 2026-05-13 | ShellHub is a centralized SSH gateway. |
CVE-2026-44425 | Medium | 5.4 | — | 2026-05-13 | ShellHub is a centralized SSH gateway. |
Subnet Solutions · 4 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-26289 | High | 8.2 | — | 2026-05-12 | PowerSYSTEM Center REST API endpoint for device account export allows an authenticated user with limited permissions to expose sensitive information normally restricted to administrative permissions only. |
CVE-2026-35555 | Medium | 6.3 | — | 2026-05-12 | PowerSYSTEM Center feature for device project groups allows an authenticated user with limited permissions to perform an unauthorized deletion of project groups. |
CVE-2026-33570 | Medium | 5.7 | — | 2026-05-12 | PowerSYSTEM Center REST API endpoint for devices allows a low privilege authenticated user to access information normally limited by operational permissions. |
CVE-2026-35504 | Medium | 5.5 | — | 2026-05-12 | PowerSYSTEM Center email notification service is affected by a CRLF injection vulnerability when using SMTPS communication. |
Tenda · 4 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-8264 | Medium | 6.3 | — | 2026-05-11 | A weakness has been identified in Tenda AC6 15.03.06.23. |
CVE-2026-8265 | Medium | 4.7 | — | 2026-05-11 | A security vulnerability has been detected in Tenda AC6 15.03.06.23. |
CVE-2026-8263 | Medium | 4.7 | — | 2026-05-11 | A security flaw has been discovered in Tenda AC6 15.03.06.49_multi_TDE01. |
CVE-2026-8259 | Medium | 4.7 | — | 2026-05-11 | A vulnerability has been found in Tenda AC6 2.0/15.03.06.23. |
Zyxel · 4 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-7256 | High | 8.8 | — | 2026-05-12 | ** UNSUPPORTED WHEN ASSIGNED ** A command injection vulnerability in the CGI program of Zyxel WRE6505 v2 firmware version V1.00(ABDV.3)C0 could allow an adjacent attacker on the LAN to execute operating system (OS) commands on a vulnerable… |
CVE-2026-7287 | High | 7.5 | — | 2026-05-12 | ** UNSUPPORTED WHEN ASSIGNED ** A buffer overflow vulnerability in the formWep(), formWlAc(), formPasswordSetup(), formUpgradeCert(), and formDelcert() functions of the “webs” binary in Zyxel NWA1100-N customized firmware version 1.00(AACE… |
CVE-2026-7255 | Medium | 6.5 | — | 2026-05-12 | ** UNSUPPORTED WHEN ASSIGNED ** An improper restriction of excessive authentication attempts vulnerability in the web management interface of Zyxel WRE6505 v2 firmware version V1.00(ABDV.3)C0 could allow an adjacent attacker on the LAN to… |
CVE-2026-7257 | Medium | 4.4 | — | 2026-05-12 | ** UNSUPPORTED WHEN ASSIGNED ** An insecure storage of sensitive information vulnerability in the configuration file of Zyxel WRE6505 v2 firmware version V1.00(ABDV.3)C0 could allow a local attacker with administrator privileges to downloa… |
Akilli Commerce Software Technologies Ltd. Co. · 3 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-2347 | Critical | 9.8 | — | 2026-05-14 | Authorization bypass through User-Controlled key vulnerability in Akilli Commerce Software Technologies Ltd. |
CVE-2025-11024 | Critical | 9.8 | — | 2026-05-14 | Improper neutralization of special elements used in an SQL command ('SQL injection') vulnerability in Akilli Commerce Software Technologies Ltd. |
CVE-2025-6577 | Critical | 9.8 | — | 2026-05-12 | Improper neutralization of special elements used in an SQL command ('SQL injection') vulnerability in Akilli Commerce Software Technologies Ltd. |
Arqit · 3 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-33583 | High | 8.7 | — | 2026-05-13 | Exposure of the QKEY (used as input into the ‘OTA-Quantum’ device registration process) and internal system keys via an unauthenticated and unencrypted HTTP GET method in the Arqit Symmetric Key Agreement Platform. |
CVE-2026-33584 | Medium | 5.3 | — | 2026-05-13 | Exposed Keycloak management service in the Arqit Symmetric Key Agreement Platform enables unauthorized access to sensitive debug information such as metrics and health data. This issue affects Symmetric Key Agreement Platform: before 26… |
CVE-2026-33585 | Low | 3.8 | — | 2026-05-13 | Improper management of the idle timeout parameter in the Keycloak interface of the Arqit SKA-Platform enables an attacker to impersonate an authenticated tenant user via an unexpired browser session. |
Ashlar · 3 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-65088 | High | 7.8 | — | 2026-05-12 | An Out-of-Bounds Read vulnerability is present in Ashlar-Vellum Cobalt, Xenon, Argon, Lithium, and Cobalt Share versions 12.6.1204.216 and prior that could allow an attacker to disclose information or execute arbitrary code when a speciall… |
CVE-2025-65087 | High | 7.8 | — | 2026-05-12 | An Out-of-Bounds Read vulnerability is present in Ashlar-Vellum Cobalt, Xenon, Argon, Lithium, and Cobalt Share versions 12.6.1204.216 and prior that could allow an attacker to disclose information or execute arbitrary code when a speciall… |
CVE-2025-65086 | High | 7.8 | — | 2026-05-12 | An Out-of-Bounds Write vulnerability is present in Ashlar-Vellum Cobalt, Xenon, Argon, Lithium, and Cobalt Share versions 12.6.1204.216 and prior that could allow an attacker to execute arbitrary code when a specially crafted VC6 file is b… |
Bitwarden · 3 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-43640 | High | 8.1 | — | 2026-05-11 | Bitwarden Server prior to v2026.4.1 does not require master-password re-authentication when retrieving or rotating an organization's SCIM API key, allowing an authenticated user with SCIM management privileges to obtain the key using only… |
CVE-2026-43639 | High | 8.0 | — | 2026-05-11 | Bitwarden Server prior to v2026.4.0 contains a missing authorization vulnerability that allows a provider service user to add an arbitrary organization to their provider via `POST /providers/{providerId}/clients/existing`, resulting in tak… |
CVE-2026-43638 | Medium | 5.4 | — | 2026-05-11 | Bitwarden Server prior to v2026.4.1 contains a missing authorization vulnerability that allows any authenticated user to write ciphers into an arbitrary organization via `POST /ciphers/import-organization` by submitting an empty `collectio… |
Broadstreetads · 3 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-9987 | Medium | 5.3 | — | 2026-05-13 | The Broadstreet plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.53.1 via the get_sponsored_meta() AJAX action. |
CVE-2025-9989 | Medium | 4.4 | — | 2026-05-13 | The Broadstreet plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 1.53.1 due to insufficient input sanitization and output escaping. |
CVE-2025-9988 | Medium | 4.3 | — | 2026-05-13 | The Broadstreet plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on the create_advertiser AJAX action in all versions up to, and including, 1.53.1. |
Craftcms · 3 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44012 | — | — | — | 2026-05-12 | Craft CMS is a content management system (CMS). |
CVE-2026-44011 | — | — | — | 2026-05-12 | Craft CMS is a content management system (CMS). |
CVE-2026-44010 | — | — | — | 2026-05-12 | Craft CMS is a content management system (CMS). |
Cribl · 3 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-45392 | High | 8.7 | — | 2026-05-12 | DOM-based cross-site scripting (XSS) in Cribl Stream before 4.17.1 allows a remote attacker to execute arbitrary JavaScript in the browser of an authenticated user who is tricked into visiting a crafted URL and interacting with the page. |
CVE-2026-45393 | High | 7.8 | — | 2026-05-12 | A vulnerability chain in Cribl Edge for Windows before 4.17.1 allows a local authenticated user to escalate privileges to NT AUTHORITY\SYSTEM. |
CVE-2026-45391 | High | 7.8 | — | 2026-05-12 | A command injection vulnerability in Cribl Edge for Linux versions 3.2.0 through 4.17.0 allows a local unprivileged user to execute arbitrary commands in the context of the Cribl Edge service account. |
Dhtmlx · 3 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-41553 | Critical | 10.0 | — | 2026-05-15 | PDF Export Module used in DHTMLX's products Gantt and Scheduler is vulnerable to Remote Code Execution due to lack of "data" parameter sanitization. |
CVE-2026-41552 | High | 7.5 | — | 2026-05-15 | PDF Export Module used in DHTMLX's products Gantt and Scheduler is vulnerable to Path Traversal due to lack of HTML sanitization. |
CVE-2026-7182 | — | — | — | 2026-05-15 | Diagram's export module is vulnerable to Path Traversal in src attribute due to lack of HTML sanitization. An unauthenticated user could craft the html payload which could include local files from the server and display them in the genera… |
Heymrun · 3 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-45227 | High | 8.8 | — | 2026-05-12 | Heym before 0.0.21 contains a sandbox escape vulnerability in the custom Python tool executor that allows authenticated workflow authors to bypass sandbox restrictions by using object-graph introspection primitives. |
CVE-2026-45225 | High | 7.6 | — | 2026-05-12 | Heym before 0.0.21 contains a path traversal vulnerability in the file upload endpoint that allows authenticated users to write attacker-controlled files to arbitrary locations by supplying a crafted filename with traversal sequences. |
CVE-2026-45226 | High | 7.1 | — | 2026-05-12 | Heym before 0.0.21 contains an authorization bypass vulnerability in workflow execution that allows authenticated users to execute arbitrary workflows by referencing victim workflow UUIDs without proper access validation. |
Jo-jo98 · 3 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44219 | Low | 3.7 | — | 2026-05-12 | ciguard is a static security auditor for CI/CD pipelines. |
CVE-2026-44220 | Low | 3.2 | — | 2026-05-12 | ciguard is a static security auditor for CI/CD pipelines. |
CVE-2026-44218 | Low | 3.0 | — | 2026-05-12 | ciguard is a static security auditor for CI/CD pipelines. |
Metagauss · 3 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-4609 | High | 7.1 | — | 2026-05-13 | The ProfileGrid – User Profiles, Groups and Communities plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on the pm_invite_user function in all versions up to, and including, 5.9.8.4. |
CVE-2026-4608 | Medium | 6.5 | — | 2026-05-13 | The ProfileGrid – User Profiles, Groups and Communities plugin for WordPress is vulnerable to blind SQL Injection via the 'rid' parameter in all versions up to, and including, 5.9.8.4 due to insufficient escaping on the user supplied param… |
CVE-2026-4607 | Medium | 4.3 | — | 2026-05-13 | The ProfileGrid – User Profiles, Groups and Communities plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 5.9.8.4. |
Modelcontextprotocol · 3 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-42559 | High | 8.8 | — | 2026-05-14 | RMCP is an official Rust SDK for the Model Context Protocol. |
CVE-2026-45781 | Low | 3.5 | — | 2026-05-14 | The MCP Registry provides MCP clients with a list of MCP servers, like an app store for MCP servers. |
CVE-2026-44427 | — | — | — | 2026-05-14 | The MCP Registry provides MCP clients with a list of MCP servers, like an app store for MCP servers. |
Multiparty · 3 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-8162 | High | 7.5 | — | 2026-05-12 | multiparty@4.2.3 and lower versions are vulnerable to denial of service via uncaught exception. |
CVE-2026-8161 | High | 7.5 | — | 2026-05-12 | multiparty@4.2.3 and lower versions are vulnerable to denial of service via uncaught exception. |
CVE-2026-8159 | High | 7.5 | — | 2026-05-12 | multiparty@4.2.3 and lower versions are vulnerable to denial of service via regular expression backtracking in the Content-Disposition filename parameter parser. |
Open-telemetry · 3 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-42602 | High | 8.1 | — | 2026-05-13 | azureauthextension is the Azure Authenticator Extension. |
CVE-2026-42191 | Medium | 6.5 | — | 2026-05-12 | OpenTelemetry.Exporter.OpenTelemetryProtocol is the OTLP (OpenTelemetry Protocol) exporter implementation. |
CVE-2026-42348 | Medium | 5.9 | — | 2026-05-12 | OpenTelemetry.OpAmp.Client is the OpAMP client for OpenTelemetry .NET. |
Openedx · 3 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-42860 | High | 8.5 | — | 2026-05-11 | The Open edx Enterprise Service app provides enterprise features to the Open edX platform. |
CVE-2026-42858 | High | 8.5 | — | 2026-05-11 | Open edX Platform enables the authoring and delivery of online learning at any scale. |
CVE-2026-42857 | Medium | 4.6 | — | 2026-05-11 | Open edX Platform enables the authoring and delivery of online learning at any scale. |
Openmage · 3 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-42207 | Medium | 6.1 | — | 2026-05-15 | Magento Long Term Support (LTS) is an unofficial, community-driven project provides an alternative to the Magento Community Edition e-commerce platform with a high level of backward compatibility. |
CVE-2026-42458 | — | — | — | 2026-05-15 | Magento Long Term Support (LTS) is an unofficial, community-driven project provides an alternative to the Magento Community Edition e-commerce platform with a high level of backward compatibility. |
CVE-2026-42155 | — | — | — | 2026-05-15 | Magento Long Term Support (LTS) is an unofficial, community-driven project provides an alternative to the Magento Community Edition e-commerce platform with a high level of backward compatibility. |
Saitoha · 3 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44636 | High | 7.4 | — | 2026-05-14 | libsixel is a SIXEL encoder/decoder implementation derived from kmiya's sixel. |
CVE-2026-44637 | High | 7.1 | — | 2026-05-14 | libsixel is a SIXEL encoder/decoder implementation derived from kmiya's sixel. |
CVE-2026-44638 | Low | 2.5 | — | 2026-05-14 | libsixel is a SIXEL encoder/decoder implementation derived from kmiya's sixel. |
Sap · 3 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-40135 | Medium | 6.5 | — | 2026-05-12 | An OS Command Injection vulnerability exists in the SAP NetWeaver Application Server for ABAP and ABAP Platform that allows an authenticated attacker with administrative access to execute specially crafted shell commands on the server, byp… |
CVE-2026-27682 | Medium | 4.7 | — | 2026-05-12 | Due to a reflected cross-site scripting (XSS) vulnerability in SAP NetWeaver Application Server ABAP (Applications based on Business Server Pages), an unauthenticated attacker could craft a URL that exploits an unprotected URL parameter to… |
CVE-2026-27680 | Low | 3.1 | — | 2026-05-14 | Due to improper input handling under certain conditions, SAP NetWeaver Application Server ABAP allows an attacker to inject custom Cascading Style Sheets (CSS) data into a web page served by the application. |
Smub · 3 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-6177 | High | 7.2 | — | 2026-05-13 | The Custom Twitter Feeds plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up to and including 2.5.4. |
CVE-2026-7619 | Medium | 6.5 | — | 2026-05-13 | The Charitable – Donation Plugin for WordPress – Fundraising with Recurring Donations & More plugin for WordPress is vulnerable to generic SQL Injection via the 's' parameter in all versions up to, and including, 1.8.10.4 due to insufficie… |
CVE-2026-5361 | Medium | 6.4 | — | 2026-05-14 | The Envira Gallery Lite plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the REST API in versions up to and including 1.12.4. |
Stylemix · 3 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-3892 | High | 8.1 | — | 2026-05-14 | The Motors – Car Dealership & Classified Listings Plugin plugin for WordPress is vulnerable to arbitrary file deletion in all versions up to, and including, 1.4.107. |
CVE-2025-14755 | Medium | 5.3 | — | 2026-05-13 | The Cost Calculator Builder plugin for WordPress is vulnerable to Unauthenticated Price Manipulation and Insecure Direct Object Reference (IDOR) in all versions up to, and including, 4.0.1 only when used in combination with Cost Calculator… |
CVE-2026-1934 | Medium | 4.3 | — | 2026-05-12 | The Motors – Car Dealership & Classified Listings plugin for WordPress is vulnerable to Payment Bypass via insecure user meta update in all versions up to, and including, 1.4.103 This is due to the stm_save_user_extra_fields() function upd… |
Suse · 3 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-41050 | Critical | 9.9 | — | 2026-05-13 | Fleet's Helm deployer did not fully apply ServiceAccount impersonation in two code paths, allowing a tenant with git push access to a Fleet-monitored repository to read secrets from any namespace on every downstream cluster targeted by the… |
CVE-2026-25705 | High | 8.4 | — | 2026-05-13 | A vulnerability has been identified in [Rancher's Extensions](https://ranchermanager.docs.rancher.com/integrations-in-rancher/rancher-extensions) where malicious code can be injected in Rancher through a path traversal in the `compressedEn… |
CVE-2026-41051 | Medium | 5.0 | — | 2026-05-13 | csync2 uses insecure temporary directories when compiled with C99 or later, allowing for TOCTOU style attacks on the temporary directories. |
Techjewel · 3 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-5395 | High | 8.2 | — | 2026-05-14 | The Fluent Forms – Customizable Contact Forms, Survey, Quiz, & Conversational Form Builder plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 6.2.0 via the exportEntries function du… |
CVE-2026-5396 | High | 8.2 | — | 2026-05-14 | The Fluent Forms plugin for WordPress is vulnerable to Authorization Bypass Through User-Controlled Key in all versions up to, and including, 6.1.21. |
CVE-2026-6828 | Medium | 6.4 | — | 2026-05-13 | The Fluent Forms – Customizable Contact Forms, Survey, Quiz, & Conversational Form Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'permission_message' parameter in all versions up to, and including, 6.2.1… |
Universal-tool-calling-protocol · 3 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-45369 | High | 8.3 | — | 2026-05-14 | python-utcp is the python implementation of UTCP. |
CVE-2026-45370 | High | 7.7 | — | 2026-05-14 | python-utcp is the python implementation of UTCP. |
CVE-2026-44661 | Medium | 4.7 | — | 2026-05-14 | python-utcp is the python implementation of UTCP. |
Vmware · 3 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-41713 | High | 8.2 | — | 2026-05-12 | A malicious user could craft input that is stored in conversation memory and later interpreted by the model in an unintended way. |
CVE-2026-41702 | High | 7.8 | — | 2026-05-15 | VMware Fusion contains a TOCTOU (Time-of-check Time-of-use) vulnerability that occurs during an operation performed by a SETUID binary. A malicious actor with local non-administrative user privileges may exploit this vulnerability to escal… |
CVE-2026-41712 | High | 7.5 | — | 2026-05-12 | Spring AI's chat memory component contained a problematic default that, when not explicitly overridden, could result in unintended data exposure between users. |
Wikimedia Foundation · 3 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-5266 | — | — | — | 2026-05-11 | Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Wikimedia Foundation Echo. |
CVE-2026-34089 | — | — | — | 2026-05-11 | Vulnerability in Wikimedia Foundation Scribunto. |
CVE-2026-34086 | — | — | — | 2026-05-11 | Vulnerability in Wikimedia Foundation AbuseFilter. |
Wpengine · 3 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-4030 | High | 8.1 | — | 2026-05-14 | The Database Backup for WordPress plugin for WordPress is vulnerable to unauthorized arbitrary file read and deletion in all versions up to, and including, 2.5.2. |
CVE-2026-4031 | High | 7.5 | — | 2026-05-14 | The Database Backup for WordPress plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 2.5.2. |
CVE-2026-4029 | High | 7.5 | — | 2026-05-14 | The Database Backup for WordPress plugin for WordPress is vulnerable to unauthorized database export in all versions up to, and including, 2.5.2. |
Yafnet · 3 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-43937 | High | 8.8 | — | 2026-05-12 | YetAnotherForum.NET (YAF.NET) is a C# ASP.NET forum. |
CVE-2026-43938 | High | 8.1 | — | 2026-05-12 | YetAnotherForum.NET (YAF.NET) is a C# ASP.NET forum. |
CVE-2026-43939 | High | 7.3 | — | 2026-05-12 | YetAnotherForum.NET (YAF.NET) is a C# ASP.NET forum. |
Yordam Information Technology Consulting, Training And Electronic Systems Industry And Trade Inc. · 3 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-15024 | High | 8.8 | — | 2026-05-14 | Improper Control of Generation of Code ('Code Injection') vulnerability in Yordam Information Technology Consulting, Training and Electronic Systems Industry and Trade Inc. |
CVE-2025-15023 | High | 8.8 | — | 2026-05-14 | Incorrect Authorization vulnerability in Yordam Information Technology Consulting, Training and Electronic Systems Industry and Trade Inc. |
CVE-2025-15025 | High | 8.8 | — | 2026-05-14 | Authorization bypass through User-Controlled key vulnerability in Yordam Information Technology Consulting, Training and Electronic Systems Industry and Trade Inc. |
Zen-browser · 3 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-41431 | High | 8.0 | — | 2026-05-11 | Zen is a firefox-based browser. |
CVE-2026-44659 | Medium | 4.7 | — | 2026-05-11 | Zen is a firefox-based browser. |
CVE-2026-44658 | Low | 2.4 | — | 2026-05-11 | Zen is a firefox-based browser. |
Zoom · 3 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-30906 | High | 7.8 | — | 2026-05-13 | Untrusted search path in the installer for Zoom Rooms for Windows before version 7.0.0 may allow an authenticated user to enable an escalation of privilege via local access. |
CVE-2026-30905 | High | 7.8 | — | 2026-05-13 | External Control of File Name or Path in the Zoom Workplace VDI Plugin Windows Universal Installer before version 6.6.11 may allow an authenticated user to conduct an escalation of privilege via local access. |
CVE-2026-30904 | Low | 1.8 | — | 2026-05-13 | Protection Mechanism Failure in Zoom Workplace for iOS before version 7.0.0 may allow an authenticated user to conduct a disclosure of information via physical access. |
Alinto · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-46446 | High | 7.1 | — | 2026-05-14 | SOGo before 5.12.7, when PostgreSQL or MariaDB is used, and cleartext passwords are stored, allows SQL injection. |
CVE-2026-46445 | High | 7.1 | — | 2026-05-14 | SOGo before 5.12.7, when PostgreSQL is used, allows SQL injection. |
Aman · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-42742 | High | 8.5 | — | 2026-05-12 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Aman Views for WPForms views-for-wpforms-lite allows Blind SQL Injection.This issue affects Views for WPForms: from n/a through <= 3.4.6. |
CVE-2026-42741 | High | 8.5 | — | 2026-05-12 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Aman Ninja Forms Views – Display & Edit Ninja Forms Submissions on your site frontend views-for-ninja-forms allows Blind SQL In… |
Amazon Sagemaker Python Sdk · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-8597 | High | 7.2 | — | 2026-05-14 | Missing integrity verification in the Triton inference handler in Amazon SageMaker Python SDK v2 before v2.257.2 and v3 before v3.8.0 might allow a remote authenticated actor to achieve code execution in inference containers via replacemen… |
CVE-2026-8596 | High | 7.2 | — | 2026-05-14 | Cleartext storage of sensitive information in the ModelBuilder/Serve component in Amazon SageMaker Python SDK before v2.257.2 and v3 before v3.8.0 might allow a remote authenticated actor to extract the HMAC signing key from SageMaker API… |
Atutor · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-6956 | — | — | — | 2026-05-11 | ATutor is vulnerable to Reflected XSS in /install/install.php endpoint. |
CVE-2026-6909 | — | — | — | 2026-05-11 | ATutor is vulnerable to Reflected XSS in /install/upgrade.php endpoint. |
Claris · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-43685 | High | 7.2 | — | 2026-05-12 | A Remote Code Execution vulnerability in Claris FileMaker Cloud allowed a user with Admin Console privileges to inject arbitrary operating system commands through unsanitized input in the External ODBC Data Source connection test feature. |
CVE-2026-43680 | High | 7.2 | — | 2026-05-12 | A Remote Code Execution vulnerability in Claris FileMaker Cloud allowed a user with Admin Console privileges to bypass a front-end restriction on OS Script schedule types and execute arbitrary operating system commands on the underlying ho… |
Cleanuparr · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44183 | Critical | 9.8 | — | 2026-05-12 | Cleanuparr is a tool for automating the cleanup of unwanted or blocked files in Sonarr, Radarr, and supported download clients like qBittorrent. |
CVE-2026-44184 | High | 8.0 | — | 2026-05-12 | Cleanuparr is a tool for automating the cleanup of unwanted or blocked files in Sonarr, Radarr, and supported download clients like qBittorrent. |
Com.ritense.valtimo · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-42555 | Critical | 9.1 | — | 2026-05-14 | Valtimo is an open-source business process automation platform. |
CVE-2026-44516 | High | 7.6 | — | 2026-05-14 | Valtimo is an open-source business process automation platform. |
Comarch · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-68421 | — | — | — | 2026-05-14 | Comarch ERP Optima client makes use of a hard-coded password for a database user. |
CVE-2025-68420 | — | — | — | 2026-05-14 | Comarch ERP Optima client connects to a database using a high privileged account regardless of an application account to which a user logs in. |
Cp0204 · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-45229 | High | 8.8 | — | 2026-05-13 | Quark Drive before 0.8.5 contains a mass assignment vulnerability in the POST /update endpoint that allows authenticated attackers to overwrite administrator credentials by posting an arbitrary webui object to the config_data dictionary. |
CVE-2026-45228 | Medium | 5.4 | — | 2026-05-13 | Quark Drive before 0.8.5 contains a stored cross-site scripting vulnerability in the System Configuration page where the template renders push_config key names using Vue.js's v-html directive without escaping. |
Devolutions · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-5146 | Medium | 4.3 | — | 2026-05-12 | Improper access control in the notification management endpoints in Devolutions Server allows an unauthenticated attacker to modify or delete arbitrary user notification records via missing session validation. |
CVE-2026-8407 | Medium | 4.3 | — | 2026-05-12 | Missing authorization in the PAM module in Devolutions Server allows an authenticated user with a PAM license but no additional permissions to obtain OTP secret keys and recovery codes via crafted requests to PAM API endpoints. |
Dgtlmoon · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-43891 | High | 7.5 | — | 2026-05-12 | changedetection.io is a free open source web page change detection tool. |
CVE-2026-41895 | High | 7.5 | — | 2026-05-12 | changedetection.io is a free open source web page change detection tool. |
E-commerce · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-3320 | — | — | — | 2026-05-11 | Reflected Cross-Site Scripting (XSS) in the latest demo version of the Cradle eCommerce platform. |
CVE-2026-3319 | — | — | — | 2026-05-11 | Reflected Cross-Site Scripting (XSS) in the latest demo version of the Cradle eCommerce platform. |
Emmett-framework · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-42544 | High | 7.5 | — | 2026-05-12 | Granian is a Rust HTTP server for Python applications. |
CVE-2026-42545 | Medium | 5.9 | — | 2026-05-12 | Granian is a Rust HTTP server for Python applications. |
Enchant97 · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44523 | Critical | 10.0 | — | 2026-05-14 | Note Mark is an open-source note-taking application. |
CVE-2026-44522 | — | — | — | 2026-05-14 | Note Mark is an open-source note-taking application. |
Espressif · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-42854 | Critical | 9.8 | — | 2026-05-12 | arduino-esp32 is an Arduino core for the ESP32, ESP32-S2, ESP32-S3, ESP32-C3, ESP32-C6 and ESP32-H2 microcontrollers. |
CVE-2026-42855 | High | 7.5 | — | 2026-05-12 | arduino-esp32 is an Arduino core for the ESP32, ESP32-S2, ESP32-S3, ESP32-C3, ESP32-C6 and ESP32-H2 microcontrollers. |
External-secrets · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-42876 | Medium | 4.9 | — | 2026-05-11 | External Secrets Operator reads information from a third-party service and automatically injects the values as Kubernetes Secrets. |
CVE-2026-42875 | — | — | — | 2026-05-11 | External Secrets Operator reads information from a third-party service and automatically injects the values as Kubernetes Secrets. |
Freedesktop · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-46470 | Medium | 4.0 | — | 2026-05-14 | An issue was discovered in GStreamer gst-plugins-good before 1.28.2. |
CVE-2026-46469 | Medium | 4.0 | — | 2026-05-14 | An issue was discovered in GStreamer gst-plugins-good before 1.28.2. |
Fujitsu Japan Limited · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-28761 | High | 8.1 | — | 2026-05-15 | Cross-site request forgery vulnerability exists in Musetheque V4 Information Disclosure for IPKNOWLEDGE V4L1 rev2203.0 and earlier. |
CVE-2026-24662 | Medium | 5.4 | — | 2026-05-15 | Cross-site scripting vulnerability exists in Musetheque V4 Information Disclosure for IPKNOWLEDGE V4L1 rev2203.0 and earlier. |
Google Cloud · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-2031 | — | — | — | 2026-05-15 | An Improper Access Control vulnerability in several internal API endpoints for Google Cloud Application Integration prior to 2026-01-23 allows a remote, unauthenticated attacker to disclose sensitive internal information and execute arbitr… |
CVE-2026-7428 | — | — | — | 2026-05-12 | Prior to 2025-11-03, well-intended users of Terraform or REST API for Google Cloud AlloyDB for PostgreSQL could have created clusters with an insecure default password which could have been exploited by a remote attacker to gain full admin… |
Huggingface · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44827 | High | 8.8 | — | 2026-05-14 | Diffusers is the a library for pretrained diffusion models. |
CVE-2026-44513 | High | 8.8 | — | 2026-05-14 | Diffusers is the a library for pretrained diffusion models. |
Joomsky · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2020-37226 | High | 7.1 | — | 2026-05-13 | Joomla J2 JOBS 1.3.0 contains an authenticated SQL injection vulnerability that allows authenticated attackers to manipulate database queries by injecting SQL code through the 'sortby' parameter. |
CVE-2020-37224 | High | 7.1 | — | 2026-05-13 | Joomla J2 JOBS 1.3.0 contains an authenticated SQL injection vulnerability that allows authenticated attackers to manipulate database queries by injecting SQL code through the 'sortby' parameter. |
Jupyter · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-42557 | Critical | 9.6 | — | 2026-05-13 | jupyterlab is an extensible environment for interactive and reproducible computing, based on the Jupyter Notebook Architecture. |
CVE-2026-42266 | High | 8.8 | — | 2026-05-13 | JupyterLab is an extensible environment for interactive and reproducible computing, based on the Jupyter Notebook Architecture. |
Lenovo · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-6281 | High | 8.8 | — | 2026-05-13 | A potential vulnerability was reported in some Lenovo Personal Cloud Storage devices that could allow a remote authenticated user on the local network to execute arbitrary commands on the device. |
CVE-2026-6282 | High | 8.1 | — | 2026-05-13 | A potential improper file path validation vulnerability was reported in some Lenovo Personal Cloud Storage devices that could allow a remote authenticated user to move or access files belonging to other users on the same device. |
Mathesar-foundation · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44719 | — | — | — | 2026-05-15 | Mathesar is a web application that makes working with PostgreSQL databases both simple and powerful. |
CVE-2026-44718 | — | — | — | 2026-05-15 | Mathesar is a web application that makes working with PostgreSQL databases both simple and powerful. |
Mattermost · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-4054 | Medium | 4.3 | — | 2026-05-15 | Mattermost versions 11.5.x <= 11.5.1, 10.11.x <= 10.11.13, 11.4.x <= 11.4.3 Fail to validate the response body of proxied images, which allows a remote attacker to enact client-side DoS via an SVG file served from an attacker-controlled or… |
CVE-2026-4053 | Low | 3.1 | — | 2026-05-15 | Mattermost versions 11.5.x <= 11.5.1, 10.11.x <= 10.11.13 fail to enforce the PostEditTimeLimit on non-message post fields which allows an authenticated user to modify post file attachments, props, and pin status after the edit window has… |
Micronaut-projects · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44241 | High | 7.5 | — | 2026-05-12 | Micronaut Framework is a JVM-based full stack Java framework designed for building modular, easily testable JVM applications. |
CVE-2026-44242 | Low | 3.7 | — | 2026-05-12 | Micronaut Framework is a JVM-based full stack Java framework designed for building modular, easily testable JVM applications. |
Mtrudel · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-39806 | High | 7.5 | — | 2026-05-13 | Loop with Unreachable Exit Condition ('Infinite Loop') vulnerability in mtrudel bandit allows unauthenticated remote denial of service via worker process exhaustion. |
CVE-2026-39803 | High | 7.5 | — | 2026-05-13 | Allocation of Resources Without Limits or Throttling vulnerability in mtrudel bandit allows unauthenticated remote denial of service via memory exhaustion. |
Naturalintelligence · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44665 | Medium | 6.1 | — | 2026-05-13 | fast-xml-builder builds XML from JSON. |
CVE-2026-44664 | Medium | 6.1 | — | 2026-05-13 | fast-xml-builder builds XML from JSON. |
Netflix · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44304 | High | 8.1 | — | 2026-05-12 | Lemur manages TLS certificate creation. |
CVE-2026-44305 | Medium | 6.8 | — | 2026-05-12 | Lemur manages TLS certificate creation. |
Nitro · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44372 | Medium | 6.1 | — | 2026-05-13 | Nitro is a next generation server toolkit. |
CVE-2026-44373 | Medium | 5.3 | — | 2026-05-13 | Nitro is a next generation server toolkit. |
Oalders · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-8368 | Medium | 6.5 | — | 2026-05-12 | LWP::UserAgent versions before 6.83 for Perl leak Authorization and Proxy-Authorization headers on cross-origin redirects. |
CVE-2026-8612 | Medium | 5.3 | — | 2026-05-15 | WWW::Mechanize::Cached versions before 2.00 for Perl deserialize cached HTTP responses from a world-writable on-disk cache, enabling local response forgery and code execution. |
Phpoffice · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-40902 | High | 7.5 | — | 2026-05-12 | PhpSpreadsheet is a pure PHP library for reading and writing spreadsheet files. |
CVE-2026-40863 | High | 7.5 | — | 2026-05-12 | PhpSpreadsheet is a pure PHP library for reading and writing spreadsheet files. |
Python · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44432 | High | 7.5 | — | 2026-05-13 | urllib3 is an HTTP client library for Python. |
CVE-2026-44431 | Medium | 5.3 | — | 2026-05-13 | urllib3 is an HTTP client library for Python. |
Radare · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-8696 | High | 7.5 | — | 2026-05-15 | radare2 6.1.5 contains a use-after-free vulnerability in the gdbr_pids_list() function within the GDB client core that allows remote attackers to cause a denial of service or potentially execute arbitrary code by sending malformed thread i… |
CVE-2026-8695 | High | 7.5 | — | 2026-05-15 | radare2 6.1.5 contains a use-after-free vulnerability in the gdbr_threads_list() function that allows remote attackers to trigger memory corruption by sending a valid qfThreadInfo response followed by a malformed qsThreadInfo response. |
Realmag777 · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-4094 | High | 8.1 | — | 2026-05-15 | The FOX – Currency Switcher Professional for WooCommerce plugin for WordPress is vulnerable to unauthorized data loss due to a missing capability check on the 'admin_head' function in all versions up to, and including, 1.4.5. |
CVE-2026-45213 | High | 7.6 | — | 2026-05-12 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in RealMag777 BEAR woo-bulk-editor allows Blind SQL Injection.This issue affects BEAR: from n/a through <= 1.1.7.1. |
Rometheme · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-3425 | High | 8.8 | — | 2026-05-13 | The RTMKit Addons for Elementor plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 2.0.2 via the 'path' parameter of the 'get_content' AJAX action. |
CVE-2026-3426 | Medium | 4.3 | — | 2026-05-13 | The RTMKit Addons for Elementor plugin for WordPress is vulnerable to unauthorized modification of data due to missing capability checks on the save_widget() and reset_all_widgets() functions in all versions up to, and including, 2.0.2. |
Rust-openssl · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44662 | — | — | — | 2026-05-14 | rust-openssl provides OpenSSL bindings for the Rust programming language. |
CVE-2026-42327 | — | — | — | 2026-05-14 | rust-openssl provides OpenSSL bindings for the Rust programming language. |
Saad Iqbal · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-45211 | High | 8.5 | — | 2026-05-12 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Saad Iqbal APIExperts Square for WooCommerce woosquare allows Blind SQL Injection.This issue affects APIExperts Square for WooCommerce: f… |
CVE-2026-45215 | Medium | 5.3 | — | 2026-05-12 | Insertion of Sensitive Information Into Sent Data vulnerability in Saad Iqbal WP EasyPay wp-easy-pay allows Retrieve Embedded Sensitive Data.This issue affects WP EasyPay: from n/a through <= 4.3.0. |
Samsung Mobile · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-21024 | — | — | — | 2026-05-13 | Improper privilege management in Samsung System Support Service prior to version 8.0.8.0 allows local attackers to trigger privileged functions. |
CVE-2026-21019 | — | — | — | 2026-05-13 | Improper input validation in FacAtFunction in Galaxy Watch prior to SMR May-2026 Release 1 allows local attacker to execute arbitrary code with system privilege. |
Sigstore · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44310 | Medium | 5.4 | — | 2026-05-15 | Gitsign is a keyless Sigstore to signing tool for Git commits with your a GitHub / OIDC identity. |
CVE-2026-44309 | Medium | 5.3 | — | 2026-05-15 | Gitsign is a keyless Sigstore to signing tool for Git commits with your a GitHub / OIDC identity. |
Sonatype · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-7308 | — | — | — | 2026-05-11 | An authenticated user with upload permission to a hosted repository can store content that causes arbitrary JavaScript to execute in the browser of any user who browses that repository directory via the HTML index page in Sonatype Nexus Re… |
CVE-2026-3048 | — | — | — | 2026-05-11 | An authenticated administrator who configures or tests LDAP connectivity in Sonatype Nexus Repository Manager versions 3.0.0 through 3.91.1 may be able to initiate unintended server-side connections when interacting with a malicious LDAP s… |
Spip · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-8429 | High | 8.8 | — | 2026-05-12 | SPIP versions prior to 4.4.14 contain a remote code execution vulnerability in the private space that allows attackers to execute arbitrary code in the context of the web server. |
CVE-2026-8430 | High | 8.1 | — | 2026-05-12 | SPIP versions prior to 4.4.14 contain a remote code execution vulnerability in the public space that is limited to certain nginx configurations, allowing attackers to execute arbitrary code in the context of the web server. |
Stel Order · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-5798 | — | — | — | 2026-05-14 | Unsafe object reference (IDOR) in Stel Order v3.25.1 and earlier versions, specifically in the ‘/app/FrontController’ endpoint, through manipulation of the ‘employeeID’ parameter. |
CVE-2026-5790 | — | — | — | 2026-05-14 | Stored Cross-Site Scripting (XSS) in Stel Order v3.25.1 and earlier, located at the ‘/app/FrontController’ endpoint via the ‘legalName’ and ‘employeeID’ parameters. |
Themefusion · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-4798 | High | 7.5 | — | 2026-05-13 | The Avada Builder plugin for WordPress is vulnerable to time-based SQL Injection via the ‘product_order’ parameter in all versions up to, and including, 3.15.1 due to insufficient escaping on the user supplied parameter and lack of suffici… |
CVE-2026-4782 | Medium | 6.5 | — | 2026-05-13 | The Avada Builder plugin for WordPress is vulnerable to Arbitrary File Read in all versions up to, and including, 3.15.2 via the 'fusion_get_svg_from_file' function with the 'custom_svg' parameter of the 'fusion_section_separator' shortcod… |
Thinkinaixyz · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-43899 | Critical | 9.6 | — | 2026-05-11 | DeepChat is an open-source artificial intelligence agent platform that unifies models, tools, and agents. |
CVE-2026-43900 | Critical | 9.3 | — | 2026-05-11 | DeepChat is an open-source artificial intelligence agent platform that unifies models, tools, and agents. |
Timeclock · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2021-47966 | High | 8.2 | — | 2026-05-15 | PHP Timeclock 1.04 contains time-based and boolean-based blind SQL injection vulnerabilities in the login_userid parameter of login.php that allows unauthenticated attackers to extract database contents. |
CVE-2021-47967 | Medium | 6.1 | — | 2026-05-15 | PHP Timeclock 1.04 contains multiple cross-site scripting vulnerabilities that allow unauthenticated attackers to inject arbitrary JavaScript by manipulating URL paths and POST parameters. |
Timlegge · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-8700 | High | 7.3 | — | 2026-05-15 | Crypt::DSA versions before 1.20 for Perl generate seeds using rand. |
CVE-2026-8704 | Medium | 6.5 | — | 2026-05-15 | Crypt::DSA versions through 1.19 for Perl use 2-args open, allowing existing files to be modified. |
Tonyc · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-8669 | Medium | 6.5 | — | 2026-05-15 | Imager versions through 1.030 for Perl allow a heap out of bounds (OOB) write on crafted multi-frame GIF files. |
CVE-2026-8454 | Medium | 5.3 | — | 2026-05-15 | Imager::File::GIF versions through 1.002 for Perl allow a heap out of bounds (OOB) write on crafted multi-frame GIF files. |
Traefik · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44774 | Critical | 9.9 | — | 2026-05-15 | Traefik is an HTTP reverse proxy and load balancer. |
CVE-2026-41181 | Medium | 5.8 | — | 2026-05-15 | Traefik is an HTTP reverse proxy and load balancer. |
Tuist · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44679 | — | — | — | 2026-05-14 | Tuist is a virtual platform team for Swift app devs. |
CVE-2026-44678 | — | — | — | 2026-05-14 | Tuist is a virtual platform team for Swift app devs. |
Vllm · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44223 | Medium | 6.5 | — | 2026-05-12 | vLLM is an inference and serving engine for large language models (LLMs). |
CVE-2026-44222 | Medium | 6.5 | — | 2026-05-12 | vLLM is an inference and serving engine for large language models (LLMs). |
Zephyrproject-rtos · 2 CVEs
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-1681 | Medium | 6.1 | — | 2026-05-12 | Issuing an ICMP ping via the `net ping` shell command to a device's own IPv4 address causes the network stack to recursively re-enter the input path on the same system work-queue stack. |
CVE-2026-1677 | Medium | 5.3 | — | 2026-05-11 | Zephyr sockets created with `IPPROTO_TLS_1_3` can still negotiate a TLS 1.2 connection when both TLS versions are enabled in Kconfig, because the socket-level protocol selection is not propagated to mbedTLS (e.g. |
0xjacky · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44015 | High | 8.5 | — | 2026-05-12 | Nginx UI is a web user interface for the Nginx web server. |
10up · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-5028 | Medium | 6.5 | — | 2026-05-12 | The Eight Day Week Print Workflow plugin for WordPress is vulnerable to time-based blind SQL Injection via the 'title' parameter in the `pp-get-articles` AJAX action in all versions up to, and including, 1.2.6. |
611711dark · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44717 | Critical | 9.8 | — | 2026-05-15 | MCP Calculate Server is a mathematical calculation service based on MCP protocol and SymPy library. |
@Backstage · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44374 | Medium | 4.3 | — | 2026-05-14 | Backstage is an open framework for building developer portals. |
@Clerk · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-42349 | High | 8.1 | — | 2026-05-11 | Clerk JavaScript is the official JavaScript repository for Clerk authentication. |
@Turbo · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-45772 | Critical | 9.8 | — | 2026-05-15 | Turborepo is a high-performance build system for JavaScript and TypeScript codebases. |
Aarnott · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44375 | High | 7.5 | — | 2026-05-14 | Nerdbank.MessagePack is a NativeAOT-compatible MessagePack serialization library. |
Aas-ee · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-42260 | High | 8.2 | — | 2026-05-12 | Open-WebSearch is a multi-engine MCP server, CLI, and local daemon for agent web search and content retrieval. |
Abhishake1 · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-45321 | Critical | 9.6 | KEV | 2026-05-12 | On 2026-05-11, between approximately 19:20 and 19:26 UTC, 84 malicious versions across 42 @tanstack/* packages were published to the npm registry. |
Abis Technology Ltd. Co. · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-6001 | High | 8.8 | — | 2026-05-12 | Authorization bypass through User-Controlled key vulnerability in ABIS Technology Ltd. |
Advantech · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-6888 | High | 7.2 | — | 2026-05-13 | Successful exploitation of the SQL injection vulnerability could allow a remote authenticated attacker to execute arbitrary commands via a specific interface, potentially enabling the attacker to access, modify, or delete sensitive informa… |
Aegra · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44504 | — | — | — | 2026-05-14 | Aegra is a drop-in replacement for LangSmith Deployments. |
Agpt · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-32425 | Medium | 5.5 | — | 2026-05-13 | AutoGPT is a platform that allows users to create, deploy, and manage continuous artificial intelligence agents that automate complex workflows. |
Aiwaves-cn · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-8319 | Medium | 5.3 | — | 2026-05-11 | A weakness has been identified in aiwaves-cn agents up to e8c4e3c2d19739d3dff59e577d1c97090cc15f59. |
Alfredredbird · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-42866 | — | — | — | 2026-05-11 | Tookie is a advanced OSINT information gathering tool. |
Alinto Sogo · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-8496 | Medium | 6.1 | — | 2026-05-13 | A cross-site scripting (XSS) vulnerability exists in Alinto SOGo, version 5.12.7. |
Angular · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44437 | Medium | 6.1 | — | 2026-05-13 | The Angular SSR is a server-rise rendering tool for Angular applications. |
Anothernote · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2021-47963 | High | 7.2 | — | 2026-05-15 | Anote 1.0 contains a persistent cross-site scripting vulnerability that allows attackers to execute arbitrary code by injecting malicious payloads into markdown files stored within the application. |
Anthropic · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44467 | Medium | 6.8 | — | 2026-05-13 | The Claude Desktop app gives you Claude Code with a graphical interface built for running multiple sessions side by side. |
Antswordproject · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-43892 | High | 8.8 | — | 2026-05-12 | AntSword is a cross-platform website management toolkit. |
Any1 · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-42859 | — | — | — | 2026-05-11 | Neat VNC is a VNC server library. |
Appyap Technology And Information Inc. · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-12008 | High | 8.8 | — | 2026-05-14 | Authorization bypass through User-Controlled key vulnerability in APPYAP Technology and Information Inc. |
Arcadedata · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44221 | Critical | 9.0 | — | 2026-05-12 | ArcadeDB is a Multi-Model DBMS. |
Aria2_project · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-8367 | Medium | 4.8 | — | 2026-05-13 | aria2c accepts a server certificate with incorrect Extended Key Usage (EKU). |
Arraytics · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-39432 | High | 8.2 | — | 2026-05-12 | Missing Authorization vulnerability in Arraytics Timetics allows Exploiting Incorrectly Configured Access Control Security Levels. |
Ashanjay · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-6690 | High | 7.2 | — | 2026-05-12 | The LifePress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'n' parameter of the lp_update_mds AJAX action in all versions up to, and including, 2.2.2. |
Aspeer · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-5084 | Medium | 6.5 | — | 2026-05-11 | WebDyne::Session versions through 2.075 for Perl generates the session id insecurely. |
Astro · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-45028 | Medium | 6.1 | — | 2026-05-13 | Astro is a web framework. |
Automattic · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-42334 | High | 7.5 | — | 2026-05-14 | Mongoose is a MongoDB object modeling tool designed to work in an asynchronous environment. |
Awspring · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44308 | — | — | — | 2026-05-14 | Spring Cloud AWS simplifies using AWS managed services in a Spring and Spring Boot applications. |
Azure · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-42316 | Medium | 6.5 | — | 2026-05-11 | kafka-sink-azure-kusto Kafka Connect plugin is the official Microsoft sink for Azure Data Explorer (Kusto). |
Backdrop Cms Contributed Projects · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-45430 | High | 7.1 | — | 2026-05-12 | The Salesforce module before 1.x-1.0.1 for Backdrop CMS does not properly use a random state parameter to protect the authorization flow against CSRF attacks. |
Badgerati · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-42598 | — | — | — | 2026-05-14 | Pode is a Cross-Platform PowerShell web framework for creating REST APIs, Web Sites, and TCP/SMTP servers. |
Beardev · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-6929 | High | 7.5 | — | 2026-05-13 | The JoomSport – for Sports: Team & League, Football, Hockey & more plugin for WordPress is vulnerable to time-based blind SQL Injection via the 'sortf' parameter in all versions up to, and including, 5.7.7 due to insufficient escaping on t… |
Beaugunderson · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-42338 | Medium | 6.1 | — | 2026-05-12 | ip-address is a library for parsing and manipulating IPv4 and IPv6 addresses in JavaScript. |
Benmcollins · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44699 | — | — | — | 2026-05-15 | LibJWT is a C JSON Web Token Library. |
Bigfoot · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-6146 | Medium | 5.3 | — | 2026-05-11 | Amazon::Credentials versions through 1.2.0 for Perl uses rand to generate encryption keys. |
Bitcoinj · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44714 | High | 7.5 | — | 2026-05-15 | The bitcoinj library is a Java implementation of the Bitcoin protocol. |
Bjornjohansen · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-2300 | Medium | 6.4 | — | 2026-05-12 | The BJ Lazy Load plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the `filter_images()` function in all versions up to, and including, 1.0.9. |
Bojansliskovicglscroatiacom · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-6417 | Medium | 6.1 | — | 2026-05-14 | The GLS Shipping for WooCommerce plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'failed_orders' parameter in all versions up to, and including, 1.4.0 due to insufficient input sanitization and output escaping. |
Boldthemes · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-3694 | Medium | 6.4 | — | 2026-05-14 | The Bold Page Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'text' attribute of the bt_bb_button shortcode in all versions up to, and including, 5.6.8. |
Brantburnett · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44302 | High | 7.5 | — | 2026-05-12 | Snappier is a high performance C# implementation of the Snappy compression algorithm. |
Broadstreet · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-45210 | Medium | 5.4 | — | 2026-05-12 | Missing Authorization vulnerability in Broadstreet Broadstreet Ads broadstreet allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Broadstreet Ads: from n/a through <= 1.52.2. |
Burstbv · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-8181 | Critical | 9.8 | — | 2026-05-14 | The Burst Statistics – Privacy-Friendly WordPress Analytics (Google Analytics Alternative) plugin for WordPress is vulnerable to Authentication Bypass in versions 3.4.0 to 3.4.1.1. |
Bx33661 · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-43901 | Medium | 6.8 | — | 2026-05-11 | Wireshark MCP is an MCP Server that turns tshark into a structured analysis interface, then layers in optional Wireshark suite utilities. |
Bytecodealliance · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44216 | High | 7.5 | — | 2026-05-14 | Wasmtime is a runtime for WebAssembly. |
Bytello · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44612 | High | 7.8 | — | 2026-05-13 | Bytello Share (Windows Edition) installer executable provided by Bytello insecurely loads Dynamic Link Libraries. |
Cacalabs · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-42046 | High | 7.8 | — | 2026-05-11 | libcaca is a colour ASCII art library. |
Canon Marketing Japan Inc. · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-32661 | Critical | 9.8 | — | 2026-05-13 | Stack-based buffer overflow vulnerability exists in GUARDIANWALL MailSuite and GUARDIANWALL Mail Security Cloud (SaaS version). |
Casbin · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-6815 | Medium | 5.9 | — | 2026-05-11 | An arbitrary file write vulnerability exists in Casdoor's Local File System storage provider. |
Caterhamcomputing · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-6174 | Medium | 6.4 | — | 2026-05-14 | The CC Child Pages plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'more' parameter in all versions up to, and including, 2.1.1 due to insufficient input sanitization and output escaping. |
Cesnet · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44673 | High | 7.5 | — | 2026-05-14 | libyang is a YANG data modeling language library. |
Checkmk · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2024-47091 | High | 7.8 | — | 2026-05-13 | Privilege escalation in the mk_mysql agent plugin on Windows in Checkmk <2.4.0p29, <2.3.0p47, and 2.2.0 (EOL) allows a local unprivileged user able to create a Windows service whose name matches 'MySQL' or 'MariaDB' (or with write access t… |
Chitora Soft · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-41530 | Low | 3.3 | — | 2026-05-12 | The automatic folder creation feature of Lhaz and Lhaz+ provided by Chitora soft contains a path traversal vulnerability. |
Chriscct7 · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-5371 | High | 7.1 | — | 2026-05-12 | The MonsterInsights – Google Analytics Dashboard for WordPress (Website Stats Made Easy) plugin for WordPress is vulnerable to unauthorized access and modification of data due to a missing capability checks on the get_ads_access_token() an… |
Cli · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-45803 | Low | 3.5 | — | 2026-05-15 | `gh` is GitHub’s official command line tool. |
Cockpit-hq · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-23695 | Medium | 5.4 | — | 2026-05-15 | Cockpit CMS through version 2.14.0, patched in commit 72a83fc, contains a stored cross-site scripting vulnerability in the Set field type's Display template option, where the template string is processed by the $interpolate function using… |
Code Runner Mcp Server · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-5029 | — | — | — | 2026-05-12 | A remote code execution vulnerability exists in Code Runner MCP Server when run with the --transport http option, which exposes the /mcp JSON-RPC endpoint without authentication on port 3088. |
Coderpress · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-6709 | Medium | 4.3 | — | 2026-05-12 | The Coinbase Commerce for Contact Form 7 plugin for WordPress is vulnerable to Missing Authorization in versions up to and including 1.1.2. |
Codesys · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-35227 | — | — | — | 2026-05-12 | An unauthenticated remote attacker may exhaust all available TCP connections in the CODESYS Modbus TCP Server stack if a race condition in connection handling is successfully exploited, preventing legitimate clients from establishing new c… |
Codingjoe · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-42196 | — | — | — | 2026-05-12 | django-s3file is a lightweight file upload input for Django and Amazon S3. |
Continually · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-6813 | Medium | 4.4 | — | 2026-05-12 | The Continually plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 4.3.1 due to insufficient input sanitization and output escaping. |
Cortezaproject · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-6093 | — | — | — | 2026-05-11 | Corteza contains a SQL injection vulnerability in its Microsoft SQL Server (MSSQL) backend when filtering Compose records by the meta field.This issue affects corteza: 2024.9.8. |
Couchcms · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2021-47958 | Medium | 4.3 | — | 2026-05-15 | CouchCMS 2.2.1 contains a server-side request forgery vulnerability that allows authenticated attackers to make arbitrary HTTP requests by uploading malicious SVG files. |
Cvat-ai · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44369 | — | — | — | 2026-05-13 | CVAT is an open source interactive video and image annotation tool for computer vision. |
Dataease · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-42463 | High | 8.1 | — | 2026-05-13 | SQLBot is an intelligent Text-to-SQL system based on large language models and RAG. |
Datahub · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44501 | Medium | 4.3 | — | 2026-05-14 | DataHub is an open-source metadata platform. |
Davidalmeidac · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-45091 | Critical | 9.1 | — | 2026-05-12 | sealed-env is a cross-stack, zero-trust secret management library for Node.js and Java/Spring Boot. |
Davidfcarr · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-6403 | High | 7.5 | — | 2026-05-15 | The Quick Playground plugin for WordPress is vulnerable to Path Traversal in versions up to and including 1.3.3. |
Davidskysa · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-6710 | Medium | 4.3 | — | 2026-05-12 | The Skysa Text Ticker App plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.4. |
Debian · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-46333 | High | 7.1 | — | 2026-05-15 | In the Linux kernel, the following vulnerability has been resolved: ptrace: slightly saner 'get_dumpable()' logic The 'dumpability' of a task is fundamentally about the memory image of the task - the concept comes from whether it can cor… |
Dedoc · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44262 | Critical | 9.4 | — | 2026-05-12 | Scramble generates API documentation for Laravel project. |
Delphix Continuous Data · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-8654 | — | — | — | 2026-05-15 | Improper input validation in Delphix Continuous Data connectors allows an authenticated user to execute arbitrary operating system commands on the staging or target host. |
Deskflow · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44296 | High | 7.5 | — | 2026-05-12 | Deskflow is a keyboard and mouse sharing app. |
Devspace · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-42283 | High | 7.7 | — | 2026-05-14 | DevSpace is a client-only developer tool for cloud-native development with Kubernetes. |
Distribution · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-41888 | Medium | 6.5 | — | 2026-05-14 | Distribution is a toolkit to pack, ship, store, and deliver container content. |
Dkfz · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44246 | High | 7.2 | — | 2026-05-12 | nnU-Net is a semantic segmentation framework that automatically adapts its pipeline to a dataset. |
Dlink · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-36983 | High | 7.3 | — | 2026-05-11 | D-Link DCS-932L v2.18.01 is vulnerable to Command Injection in the function sub_42EF14 of the file /bin/alphapd. |
Docling-project · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44520 | Medium | 5.7 | — | 2026-05-14 | Docling-Graph turns documents into validated Pydantic objects, then builds a directed knowledge graph with explicit semantic relationships. |
Dream-theme · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-6646 | Medium | 6.4 | — | 2026-05-15 | The The7 theme for WordPress is vulnerable to Stored Cross-Site Scripting via the 'dt_default_button' shortcode in all versions up to, and including, 14.3.2. |
Drive-software · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2020-37221 | High | 8.4 | — | 2026-05-13 | Atomic Alarm Clock 6.3 contains a stack overflow vulnerability that allows local attackers to execute arbitrary code by supplying a malicious string to the display name textbox in the Time Zones Clock configuration. |
E-kalite Software Hardware Engineering Design And Internet Services Industry And Trade Ltd. Co. · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-2465 | High | 8.8 | — | 2026-05-12 | Incorrect Authorization vulnerability in E-Kalite Software Hardware Engineering Design and Internet Services Industry and Trade Ltd. |
Easy2pilot · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2020-37217 | Medium | 4.3 | — | 2026-05-13 | Easy2Pilot 7 contains a cross-site request forgery vulnerability that allows attackers to add unauthorized user accounts by tricking authenticated administrators into visiting malicious pages. |
Elie222 · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-42865 | Medium | 4.3 | — | 2026-05-11 | Inbox Zero is an AI personal assistant for email. |
Elixir-ecto · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-32687 | High | 7.8 | — | 2026-05-12 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in elixir-ecto postgrex ('Elixir.Postgrex.Notifications' module) allows SQL Injection. |
Elixir-plug · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-8468 | — | — | — | 2026-05-14 | Allocation of Resources Without Limits or Throttling vulnerability in plug_project plug allows denial of service via unbounded buffer accumulation in multipart header parsing. |
Elixir-webrtc · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44700 | — | — | — | 2026-05-14 | Elixir WebRTC is an Elixir implementation of the W3C WebRTC API. |
Enesgkky · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44225 | Critical | 9.3 | — | 2026-05-12 | Pulpy is a lightweight, cross-platform desktop application packager for web apps. |
Epg, Inc. · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-41872 | High | 7.4 | — | 2026-05-12 | "Kura Sushi Official App" provided by EPG, Inc. |
Erolsk8 · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-6670 | Medium | 6.5 | — | 2026-05-14 | The Media Sync plugin for WordPress is vulnerable to Path Traversal in all versions up to, and including, 1.4.9 via the 'sub_dir' and 'media_items' parameters. |
Etcd · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44283 | Unrated | — | — | 2026-05-14 | etcd is a distributed key-value store for the data of a distributed system. |
Ethyca · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-42303 | — | — | — | 2026-05-12 | Fides is an open-source privacy engineering platform. |
Evank · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-8500 | Critical | 9.8 | — | 2026-05-13 | Web::Passwd versions through 0.03 for Perl is vulnerable to RCE. |
Exim · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-45185 | Critical | 9.8 | — | 2026-05-12 | Exim before 4.99.3, in certain GnuTLS configurations, has a remotely reachable use-after-free in the BDAT body parsing path. |
Fabrikar · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2020-37219 | High | 7.5 | — | 2026-05-13 | Joomla com_fabrik 3.9.11 contains a directory traversal vulnerability that allows unauthenticated attackers to list arbitrary files by manipulating the folder parameter. |
Fastbots · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-6800 | Medium | 4.4 | — | 2026-05-12 | The FastBots plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 1.0.12 due to insufficient input sanitization and output escaping. |
Fccview · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-42564 | High | 8.2 | — | 2026-05-11 | jotty·page is a self-hosted app for your checklists and notes. |
Felippe-regazio · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-43929 | High | 8.2 | — | 2026-05-12 | ssrfcheck is a library that checks if a string contains a potential SSRF attack. |
Flowiseai · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-43995 | Critical | 9.8 | — | 2026-05-11 | Flowise is a drag & drop user interface to build a customized large language model flow. |
Flowsint · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-42159 | Medium | 5.4 | — | 2026-05-14 | Flowsint is an open-source OSINT graph exploration tool designed for cybersecurity investigation, transparency, and verification. |
Freertos · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-8686 | High | 7.5 | — | 2026-05-15 | Missing bounds validation in the MQTT v5.0 property parser in coreMQTT before 5.0.1 allows an MQTT broker to cause a denial of service by sending a crafted packet. |
Fuji Electric · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-8108 | High | 7.8 | — | 2026-05-12 | The installation of Fuji Tellus adds a driver to the kernel which grants all users read and write permissions. |
Gabe Livan · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-45212 | Medium | 5.3 | — | 2026-05-12 | Missing Authorization vulnerability in Gabe Livan Asset CleanUp: Page Speed Booster wp-asset-clean-up allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Asset CleanUp: Page Speed Booster: from n/a th… |
Gdragon · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-7635 | High | 8.1 | — | 2026-05-13 | The coreActivity: Activity Logging for WordPress plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 3.0. |
Gerrit · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-2725 | Medium | 5.3 | — | 2026-05-13 | Incorrect authorization in the "submitted together" feature in Gerrit versions 2.12 and later allows an authenticated attacker with force push permissions on a secondary branch to bypass code review and forcefully submit code to restricted… |
Getoutline · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44695 | Medium | 5.8 | — | 2026-05-11 | Outline is a service that allows for collaborative documentation. |
Geysermc · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-42188 | Low | 2.4 | — | 2026-05-11 | Geyser is a bridge between Minecraft: Bedrock Edition and Minecraft: Java Edition. |
Ghera74 · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-14033 | Medium | 5.3 | — | 2026-05-13 | The ilGhera Support System for WooCommerce plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the 'get_ticket_content_callback' function in all versions up to, and including, 1.3.0. |
Github · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-45033 | High | 7.8 | — | 2026-05-13 | GitHub Copilot CLI brings AI-powered coding assistance directly to your command line. |
Gitoxidelabs · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44471 | High | 7.8 | — | 2026-05-13 | gitoxide is an implementation of git written in Rust. |
Gittuf · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44544 | — | — | — | 2026-05-14 | gittuf is a platform-agnostic Git security system. |
Gnome · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44931 | — | — | — | 2026-05-13 | The newly introduced RecordUsage D-Bus method https://gitlab.freedesktop.org/pwithnall/malcontent/-/blob/0.14.0/libmalcontent-timer/child-timer-service.c in malcontent-timerd allows arbitrary users in the system to slowly fill up disk sp… |
Gofiber · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-42554 | Medium | 6.1 | — | 2026-05-11 | Fiber is a web framework for Go. |
Gohugo · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44301 | High | 8.1 | — | 2026-05-12 | Hugo is a static site generator. |
Gopi_plus · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-5340 | Medium | 6.4 | — | 2026-05-12 | The Fancy Image Show plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's `fancy-img-show` shortcode in all versions up to, and including, 9.1 due to insufficient input sanitization and output escaping on user… |
Gowebsmarty · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-3829 | Medium | 5.4 | — | 2026-05-14 | The WP Encryption – One Click Free SSL Certificate & SSL / HTTPS Redirect, Security & SSL Scan plugin for WordPress is vulnerable to unauthorized modification of data due to missing capability checks on the 'wple_basic_get_requests' functi… |
Growi, Inc. · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-41951 | High | 7.2 | — | 2026-05-11 | Path traversal vulnerability exists in GROWI v7.5.0 and earlier, which may allow an attacker to execute arbitrary EJS templates on the server when an email server is running in GROWI. |
Gtsteffaniak · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44542 | Critical | 9.1 | — | 2026-05-14 | FileBrowser Quantum is a free, self-hosted, web-based file manager. |
Guimard · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-8503 | Medium | 6.5 | — | 2026-05-15 | Apache::Session::Generate::SHA256 versions before 1.3.19 for Perl create insecure session ids. |
Haarg · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-7010 | Medium | 6.5 | — | 2026-05-11 | HTTP::Tiny versions before 0.093 for Perl do not validate CRLF in HTTP request lines or control field header values. |
Hackingrepo · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44232 | — | — | — | 2026-05-12 | DSSRF is a Node.js library that provides a wide range of utilities and advanced SSRF defense checks. |
Hashgraph · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-45248 | Medium | 5.3 | — | 2026-05-14 | Hedera Guardian through 3.5.1 contains an authentication bypass vulnerability in the GET /api/v1/demo/registered-users endpoint that allows unauthenticated attackers to retrieve sensitive user information. |
Hatchet · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-42572 | Medium | 5.3 | — | 2026-05-14 | Hatchet is a platform for orchestrating background tasks, AI agents, and durable workflows at scale. |
Hclsoftware · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-21821 | High | 8.3 | — | 2026-05-13 | The HCL BigFix SCM Reporting site contains an outdated and unsupported version of the jQuery 1.x library. |
Hdwplayer · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2020-37218 | High | 8.2 | — | 2026-05-13 | Joomla com_hdwplayer 4.2 contains an SQL injection vulnerability in the search.php file that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the hdwplayersearch parameter. |
Hemant29 · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-6932 | Medium | 4.3 | — | 2026-05-12 | The Woo Commerce Minimum Weight plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to and including 3.0.1. |
Higheredlab · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-6708 | Medium | 5.3 | — | 2026-05-12 | The HEL Online Classroom: AI-powered Online Classrooms plugin for WordPress is vulnerable to Missing Authorization in all versions up to, and including, 1.0.3. |
Hikvision · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-32684 | Low | 2.9 | — | 2026-05-12 | The application does not impose strict enough restrictions on directory access permissions, posing a risk that other malicious applications could obtain sensitive information. |
Hitachi · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-11159 | Critical | 9.1 | — | 2026-05-13 | Hitachi Vantara Pentaho Data Integration & Analytics of all versions contain a JDBC driver for H2 databases which is vulnerable to external script execution when a new connection is created by a data source administrator. |
Hoppscotch · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44478 | High | 7.5 | — | 2026-05-13 | hoppscotch is an open source API development ecosystem. |
Horilla · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-41513 | — | — | — | 2026-05-12 | Horilla is an HR and CRM software. |
Hostinger · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-2515 | Medium | 5.3 | — | 2026-05-13 | The Hostinger Reach – AI-Powered Email Marketing for WordPress plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'handle_ajax_action' function in all versions up to, and includ… |
Husky · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2020-37174 | Medium | 5.5 | — | 2026-05-13 | WOOF Products Filter for WooCommerce 1.2.3 contains a persistent cross-site scripting vulnerability that allows authenticated attackers to inject malicious scripts by entering XSS payloads in design tab textfields. |
Hwk-fr · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-15463 | Medium | 6.5 | — | 2026-05-12 | The The Advanced Custom Fields: Extended plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 0.9.2.3. |
Identd-ng · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-43916 | — | — | — | 2026-05-12 | pam_authnft is a PAM session module binding nftables firewall rules to authenticated sessions via cgroupv2 inodes. |
Im Park Information Technology, Electronics, Press, Publishing And Advertising, Education Ltd. Co. · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-6008 | Medium | 6.8 | — | 2026-05-14 | Authorization bypass through User-Controlled key vulnerability in Im Park Information Technology, Electronics, Press, Publishing and Advertising, Education Ltd. |
Imagemagick · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-42050 | Medium | 5.5 | — | 2026-05-11 | ImageMagick is free and open-source software used for editing and manipulating digital images. |
Inc2734 · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-3004 | Medium | 6.4 | — | 2026-05-13 | The Snow Monkey Blocks plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘data-slick' attribute in all versions up to, and including, 24.1.11 due to insufficient input sanitization and output escaping. |
Ingeteam · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-8072 | — | — | — | 2026-05-12 | Insecure generation of credentials in the local SAT (Technical Support) access functionality of the Ingecon Sun EMS Board. |
Inkeep · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-8321 | High | 7.3 | — | 2026-05-11 | A vulnerability was detected in inkeep agents 0.58.14. |
Interactivegeomaps · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-15345 | Medium | 6.1 | — | 2026-05-14 | The MapGeo – Interactive Geo Maps plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'map' parameter in the display-map shortcode in all versions up to, and including, 1.6.27 due to insufficient input sanitization… |
Iobit · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2020-37223 | High | 7.8 | — | 2026-05-13 | IObit Uninstaller 9.5.0.15 contains an unquoted service path vulnerability in the IObitUnSvr service that allows local attackers to escalate privileges to SYSTEM level. |
Jashjacob · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-6256 | Medium | 6.4 | — | 2026-05-12 | The Credits Shortcode plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'link' attribute of the 'credits' shortcode in all versions up to, and including, 1.2 due to insufficient input sanitization and output escapin… |
Jeremyshapiro · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-4920 | Medium | 6.4 | — | 2026-05-12 | The Next Date plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'default' shortcode attribute in all versions up to, and including, 1.0 due to insufficient input sanitization and output escaping on user supplied att… |
Jetbrains · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44413 | High | 8.2 | — | 2026-05-11 | In JetBrains TeamCity before 2026.1 2025.11.5 authenticated users could expose server API to unauthorised access |
Jishenghua · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-8320 | Medium | 4.7 | — | 2026-05-11 | A security vulnerability has been detected in jishenghua jshERP up to 3.6. |
Joedolson · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-7525 | Medium | 4.3 | — | 2026-05-14 | The My Calendar – Accessible Event Manager plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 3.7.9. |
Jovancoding · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-42856 | — | — | — | 2026-05-11 | Network-AI is a TypeScript/Node.js multi-agent orchestrator. |
Justinkruit · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-6415 | Medium | 6.4 | — | 2026-05-15 | The Advanced Custom Fields: Font Awesome plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up to and including 5.0.2. |
Karnop · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44341 | Medium | 5.3 | — | 2026-05-12 | GoJobs is a REST API for a Job Board platform. |
Katalyst · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44511 | High | 7.4 | — | 2026-05-14 | Katalyst Koi is a framework for building Rails admin functionality. |
Kcseopro · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-3604 | Medium | 4.9 | — | 2026-05-12 | The WP SEO Structured Data Schema plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the `_kcseo_ative_tab` parameter in all versions up to, and including, 2.8.1 due to insufficient input sanitization and output escaping. |
Kddi Corporation · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-41281 | Medium | 4.8 | — | 2026-05-14 | Android App "あんしんフィルター for au" provided by KDDI CORPORATION contains Cleartext Transmission of Sensitive Information (CWE-319) vulnerability. |
Kde · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-25710 | — | — | — | 2026-05-13 | The new upstream added a privileged D-Bus helper called plasmaloginauthhelper, which suffers from multiple issues, e.g.aA compromised plasmalogin service account can chown() arbitrary files in the system. |
Kludex · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-42561 | High | 7.5 | — | 2026-05-13 | Python-Multipart is a streaming multipart parser for Python. |
Kmx · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2022-4988 | High | 7.3 | — | 2026-05-11 | Alien::FreeImage versions through 1.001 for Perl contains several vulnerable libraries. |
Krajowa Izba Rozliczeniowa · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44088 | — | — | — | 2026-05-15 | SzafirHost verifies the signature of the downloaded JAR file using class JarInputStream (reading from the beginning of the file), but loads classes using class JarFile/URLClassLoader (reading the Central Directory from the end). |
Kubetail-org · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44514 | Medium | 6.5 | — | 2026-05-14 | Kubetail is a real-time logging dashboard for Kubernetes. |
Kubewarden · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-42541 | Medium | 4.3 | — | 2026-05-12 | Kubewarden is a policy engine for Kubernetes. |
Kuicms · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2020-37222 | High | 7.2 | — | 2026-05-13 | Kuicms Php EE 2.0 contains a persistent cross-site scripting vulnerability that allows unauthenticated attackers to inject malicious scripts by submitting crafted content through the bbs reply endpoint. |
Kyverno · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44245 | Medium | 6.1 | — | 2026-05-12 | Kyverno is a policy engine designed for cloud native platform engineering teams. |
L3montree-dev · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-42300 | — | — | — | 2026-05-12 | DevGuard provides vulnerability management for the full software supply chain. |
Langflow · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-42048 | Critical | 9.6 | — | 2026-05-12 | Langflow is a tool for building and deploying AI-powered agents and workflows. |
Latepoint · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-5365 | Medium | 4.3 | — | 2026-05-14 | The LatePoint plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to and including 5.3.2. |
Leont · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-8463 | Medium | 5.3 | — | 2026-05-13 | Crypt::Argon2 versions from 0.017 before 0.031 for Perl perform a heap out-of-bounds read in argon2_verify on empty encoded input. |
Libexpat_project · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-7210 | High | 7.5 | — | 2026-05-11 | `xml.parsers.expat` and `xml.etree.ElementTree` use insufficient entropy for Expat hash-flooding protection, which allows a crafted XML document to trigger hash flooding.\r\n\r\nFully mitigating this vulnerability requires both updating li… |
Lightning-ai · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44484 | Critical | 9.8 | — | 2026-05-14 | PyTorch Lightning is a deep learning framework to pretrain and finetune AI models. |
Lightningai · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-31221 | High | 7.8 | — | 2026-05-12 | PyTorch-Lightning versions 2.6.0 and earlier contain an insecure deserialization vulnerability (CWE-502) in the checkpoint loading mechanism. |
Livehelperchat · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44633 | High | 8.1 | — | 2026-05-14 | Live Helper Chat is an open-source application that enables live support websites. |
Lobehub · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-42045 | Medium | 6.2 | — | 2026-05-12 | LobeHub is a work-and-lifestyle space to find, build, and collaborate with agent teammates that grow with you. |
Loft-sh · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-42457 | Critical | 9.0 | — | 2026-05-14 | vCluster Platform provides a Kubernetes platform for managing virtual clusters, multi-tenancy, and cluster sharing. |
Lookyloo · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44439 | High | 7.5 | — | 2026-05-13 | PlaywrightCapture is a simple replacement for splash using playwright. |
M615926 · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-5229 | Critical | 9.8 | — | 2026-05-15 | The Form Notify plugin for WordPress is vulnerable to Authentication Bypass in versions up to and including 1.1.10. |
Macwarrior · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-42847 | — | — | — | 2026-05-14 | ClipBucket v5 is an open source video sharing platform. |
Magicmirror · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-42281 | High | 8.6 | — | 2026-05-14 | MagicMirror² is an open source modular smart mirror platform. |
Managewp · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-3718 | High | 7.2 | — | 2026-05-14 | The ManageWP Worker plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'MWP-Key-Name' HTTP request header in all versions up to, and including, 4.9.31. |
Manomanotech · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-42864 | Critical | 9.9 | — | 2026-05-11 | FireFighter is an incident management application. |
Midoks · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-41315 | Critical | 9.8 | — | 2026-05-14 | mdserver-web is a simple Linux panel. |
Miguelgrinberg · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-42874 | Low | 3.7 | — | 2026-05-11 | Microdot is a minimalistic Python web framework. |
Minio · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-42600 | Medium | 4.9 | — | 2026-05-11 | MinIO is a high-performance object storage system. |
Moch-a · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-7437 | Medium | 6.1 | — | 2026-05-12 | The AzonPost plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the `editpos_hidden` parameter in all versions up to, and including, 1.3. |
Mongodb Inc. · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-6811 | Medium | 5.9 | — | 2026-05-14 | Stack exhaustion vulnerability in the MongoDB PHP driver can cause application crashes when processing deeply nested BSON documents in unusual circumstances when the source of these BSON documents is not MongoDB Server. |
Mongodb, Inc. · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-8431 | High | 7.2 | — | 2026-05-12 | An administrative user with access to configure webhooks can execute arbitrary commands by configuring and then triggering webhooks containing specific FreeMarker template syntax. This issue affects all MongoDB Ops Manager 7.0 versions… |
Mosparo · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-41195 | Medium | 5.0 | — | 2026-05-12 | mosparo is the modern solution to protect your online forms from spam. |
Mr2p · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-6252 | Medium | 6.4 | — | 2026-05-14 | The Meta Field Block plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'tagName' block attribute in all versions up to, and including, 1.5.2 due to insufficient input sanitization and output escaping. |
Nearform · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44351 | Critical | 9.1 | — | 2026-05-13 | fast-jwt provides fast JSON Web Token (JWT) implementation. |
Nesquena · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-22677 | Medium | 6.5 | — | 2026-05-13 | Hermes WebUI prior to 0.51.44 contains a path traversal vulnerability in the session import endpoint that allows authenticated attackers to read arbitrary files by importing a crafted session with an unrestricted workspace value. |
Nextcloud · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44515 | — | — | — | 2026-05-14 | Nextcloud News is an RSS/Atom feed reader. |
No-instructions · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-42889 | Critical | 9.1 | — | 2026-05-12 | Relay adds real-time collaboration to Obsidian. |
Npitre · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-8274 | Medium | 5.3 | — | 2026-05-11 | A security vulnerability has been detected in npitre cramfs-tools up to 2.1. |
Ntop · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-45448 | Medium | 4.3 | — | 2026-05-14 | CWE-601 URL redirection to untrusted site ('open redirect') |
Nuvoton · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-6923 | Low | 3.8 | — | 2026-05-14 | A side-channel attack, which requires a physical presence to the TPM, can lead to extraction of an Elliptic Curve Diffie-Hellman (ECDH) key. |
Nuxt-modules · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44589 | Low | 3.7 | — | 2026-05-14 | Nuxt OG Image generates OG Images with Vue templates in Nuxt. |
Omec-project · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-8349 | Medium | 4.3 | — | 2026-05-12 | A flaw has been found in omec-project amf up to 2.1.1. |
Op-engineering · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-43897 | — | — | — | 2026-05-11 | Link Preview JS extracts web links information. |
Openbao · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-42186 | High | 7.5 | — | 2026-05-14 | OpenBao is an open source identity-based secrets management system. |
Openmrs · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-41258 | Critical | 9.1 | — | 2026-05-15 | OpenMRS is an open source electronic medical record system platform. |
Openstack · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44919 | Medium | 4.3 | — | 2026-05-14 | In OpenStack Ironic through 35.x before a3f6d73, during image handling, an infinite loop in checksum calculations can occur via the file:///dev/zero URL. |
Optimalplugins · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-6808 | Medium | 6.1 | — | 2026-05-12 | The Pricing Tables for WP plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'page' parameter in all versions up to, and including, 1.1.0. |
Osc · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44371 | — | — | — | 2026-05-14 | Open OnDemand is an open-source high-performance computing portal. |
Owasp · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-42268 | High | 7.5 | — | 2026-05-12 | ModSecurity is an open source, cross platform web application firewall (WAF) engine for Apache, IIS and Nginx. |
Owasp-blt · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-42603 | High | 8.8 | — | 2026-05-11 | OWASP BLT is a QA testing and vulnerability disclosure platform that encompasses websites, apps, git repositories, and more. |
Oxyno-zeta · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-42882 | Critical | 9.4 | — | 2026-05-11 | oxyno-zeta/s3-proxy is an aws s3 proxy written in go. |
Paiement · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2020-37168 | Critical | 9.8 | — | 2026-05-13 | Ecommerce Systempay 1.0 contains a weak cryptographic implementation vulnerability that allows attackers to brute force the 16-character production secret key used for payment signature generation. |
Parse-community · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-43930 | Medium | 5.9 | — | 2026-05-12 | Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. |
Patilswapnilv · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-6913 | Medium | 6.4 | — | 2026-05-12 | The Shortcodely plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'widget_area' parameter in all versions up to, and including, 1.0.1 due to insufficient input sanitization and output escaping. |
Patrickjuchli · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44240 | High | 7.5 | — | 2026-05-12 | basic-ftp is an FTP client for Node.js. |
Peerigon · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44643 | Critical | 10.0 | — | 2026-05-11 | Angular Expressions provides expressions for the Angular.JS web framework as a standalone module. |
Pektsekye · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-8425 | Medium | 4.3 | — | 2026-05-15 | The Notify Odoo plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.0.1. |
Phili67 · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44418 | — | — | — | 2026-05-13 | EcclesiaCRM is CRM Software for church management. |
Phkcorp2005 · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-7562 | Medium | 4.3 | — | 2026-05-12 | The WP-Redirection plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to and including 1.0.3. |
Photostructure · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-43893 | High | 8.2 | — | 2026-05-11 | exiftool-vendored provides cross-platform Node.js access to ExifTool. |
Phpseclib · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44167 | High | 7.5 | — | 2026-05-12 | phpseclib is a PHP secure communications library. |
Pi-hole · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-41489 | High | 8.8 | — | 2026-05-11 | Pi-hole is a DNS sinkhole that protects devices from unwanted content without installing any client-side software. |
Pocket-id · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-43983 | High | 8.1 | — | 2026-05-12 | Pocket ID is an OIDC provider that allows users to authenticate with their passkeys to your services. |
Pocketbase · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44166 | High | 7.6 | — | 2026-05-12 | Pocketbase is an open source web backend written in go. |
Podcastgenerator · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2021-47968 | Medium | 6.4 | — | 2026-05-15 | Podcast Generator 3.1 is vulnerable to persistent cross-site scripting, allowing authenticated attackers to inject malicious scripts by submitting unfiltered JavaScript code in the long_description parameter. |
Podofo · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44348 | Low | 2.5 | — | 2026-05-14 | PoDoFo is a C++17 PDF manipulation library. |
Posimyththemes · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-5243 | Medium | 6.4 | — | 2026-05-14 | The The Plus Addons for Elementor – Addons for Elementor, Page Templates, Widgets, Mega Menu, WooCommerce plugin for WordPress is vulnerable to stored cross-site scripting via the `menu_hover_click` parameter of the Navigation Menu Lite wi… |
Powie · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2020-37225 | Medium | 6.4 | — | 2026-05-13 | Powie's WHOIS Domain Check 0.9.31 contains a persistent cross-site scripting vulnerability that allows authenticated attackers to inject arbitrary JavaScript by exploiting unsanitized input fields in plugin settings. |
Pr-gateway · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-7051 | Medium | 5.4 | — | 2026-05-13 | The Blog2Social: Social Media Auto Post & Scheduler plugin for WordPress is vulnerable to Missing Authorization in all versions up to, and including, 8.9.0. |
Premailer · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44312 | Medium | 5.8 | — | 2026-05-14 | css_parser is a Ruby CSS parser. |
Prestashop · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44212 | Critical | 9.3 | — | 2026-05-14 | PrestaShop is an open source e-commerce web application. |
Python Software Foundation · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-8328 | — | — | — | 2026-05-13 | The ftpcp() function in Lib/ftplib.py was not updated when CVE-2021-4189 was fixed. |
Qqqjus · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-7626 | Medium | 5.3 | — | 2026-05-12 | The Slek Gateway for WooCommerce plugin for WordPress is vulnerable to Information Exposure in version 1.0. |
Rapid7 · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-7373 | — | — | — | 2026-05-15 | Rapid7 Metasploit Pro is vulnerable to a local privilege escalation attack that allows a user to gain SYSTEM level control of a Windows host. |
Rbplugins · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-7050 | Medium | 4.3 | — | 2026-05-12 | The Forms Rb plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 1.1.9. |
Rdcravens · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-6237 | Medium | 6.4 | — | 2026-05-12 | The Quick Table plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'style' attribute of the 'qtbl' shortcode in all versions up to, and including, 1.0.0 due to insufficient input sanitization and output escaping on u… |
Red Hat · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-4802 | High | 8.0 | — | 2026-05-11 | A flaw was found in Cockpit. |
Requarks · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44224 | High | 8.8 | — | 2026-05-12 | Wiki.js is an open source wiki app built on Node.js. |
Rexxars · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44217 | — | — | — | 2026-05-12 | sse-channel is an SSE-implementation which can be used to any node.js http request/response stream. |
Richardhbtz · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44482 | Critical | 9.6 | — | 2026-05-14 | soundcloud-rpc is a SoundCloud Client with Discord Rich Presence, Dark Mode, Last.fm and AdBlock support. |
Riotweb · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-7659 | Medium | 6.4 | — | 2026-05-12 | The Advanced Social Media Icons plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the `social` shortcode in all versions up to, and including, 1.2. |
Saleor · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-42175 | Medium | 6.5 | — | 2026-05-12 | requests-hardened is a library that overrides the default behaviors of the requests library, and adds new security features. |
Sangoma · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-45362 | Low | 3.2 | — | 2026-05-12 | Sangoma Switchvox before 8.4 places cleartext SIP authentication credentials in a backup file. |
Saturngod · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-7616 | Medium | 4.3 | — | 2026-05-12 | The Zawgyi Embed plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.1.1. |
Savsofts · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2021-47962 | Medium | 6.4 | — | 2026-05-15 | Savsoft Quiz 5.0 contains a persistent cross-site scripting vulnerability in the user account settings page that allows authenticated attackers to inject malicious HTML and JavaScript code. |
Schlix · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2021-47964 | High | 8.8 | — | 2026-05-15 | Schlix CMS 2.2.6-6 contains a remote code execution vulnerability that allows authenticated attackers to execute arbitrary PHP code by uploading malicious extension packages through the block manager. |
Scui2 · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-5715 | Medium | 6.4 | — | 2026-05-12 | The Voyage Plus plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'class' attribute of the 'post-content' shortcode in all versions up to, and including, 1.0.6 due to insufficient input sanitization and output escap… |
Shabti · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-6228 | High | 8.8 | — | 2026-05-15 | The Frontend Admin by DynamiApps plugin for WordPress is vulnerable to Privilege Escalation in versions up to and including 3.28.36. |
Shahinurislam · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-6271 | Critical | 9.8 | — | 2026-05-14 | The Career Section plugin for WordPress is vulnerable to Arbitrary File Upload in all versions up to, and including, 1.7 via the CV upload handler. |
Shamim_d · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-7661 | Medium | 6.4 | — | 2026-05-12 | The Bootstrap Shortcode plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the `box` shortcode in all versions up to, and including, 1.0. |
Shelf-nu · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44204 | Medium | 6.5 | — | 2026-05-12 | Shelf is a platform for tracking physical assets. |
Silabs.com · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-14972 | — | — | — | 2026-05-15 | * Countermeasures for DPA within SYMCRYPTO engine on SixG301xxx devices are not sufficiently random and will eventually repeat. |
Silicon Labs · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-3290 | — | — | — | 2026-05-14 | Timing limitations of the HRNG in RS9116 when power save mode is enabled results in predictable values |
Simdjson · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-8295 | — | — | — | 2026-05-14 | An integer overflow vulnerability in the simdjson document-builder API allows incorrect buffer size calculations in "string_builder::escape_and_append()" when processing very large input strings on platforms with limited "size_t" width (e… |
Smartcatai · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-4683 | Medium | 6.5 | — | 2026-05-15 | The Smartcat Translator for WPML plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'routeData' REST endpoint in all versions up to, and including, 3.1.77. |
Smp46 · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44196 | Critical | 9.1 | — | 2026-05-12 | Pingvin Share X is a secure and easy self-hosted file sharing platform. |
Socfortress · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-42869 | Critical | 10.0 | — | 2026-05-11 | SOCFortress CoPilot focuses on providing a single pane of glass for all your security operations needs. |
Softpulseinfotech · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-4859 | Medium | 6.4 | — | 2026-05-12 | The SP Blog Designer plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'design' attribute of the `wpsbd_post_carousel` shortcode in all versions up to, and including, 1.0.0 due to insufficient input sanitization and… |
Sqlalchemy · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44307 | — | — | — | 2026-05-12 | Mako is a template library written in Python. |
Squinky86 · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-42881 | — | — | — | 2026-05-14 | STIGQter is an open-source reimplementation of DISA's STIG Viewer. |
Statamic · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44306 | Medium | 5.3 | — | 2026-05-12 | Statamic is a Laravel and Git powered content management system (CMS). |
Stefanprodan · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-43644 | Medium | 5.4 | — | 2026-05-14 | podinfo through 6.11.2 contains a reflected cross-site scripting vulnerability in the /echo and /api/echo endpoints where the echoHandler writes request body content directly to the response without setting explicit Content-Type or X-Conte… |
Steipete · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-45222 | Medium | 6.1 | — | 2026-05-11 | Summarize versions through 0.14.1, fixed in commit 0cfb0fb, creates the daemon configuration directory and file with default filesystem permissions that may be world-readable on Unix-like systems, allowing local attackers to read bearer to… |
Svvqt · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44368 | — | — | — | 2026-05-13 | PyQuorum is a cryptographic library for secret sharing and key management. |
Taigaio · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-41250 | Medium | 5.7 | — | 2026-05-11 | Taiga is a project management platform for startups and agile developers. |
Taskbuilder · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-6225 | Medium | 6.5 | — | 2026-05-14 | The Taskbuilder – Project Management & Task Management Tool With Kanban Board plugin for WordPress is vulnerable to time-based blind SQL Injection via the 'project_search' parameter in all versions up to, and including, 5.0.6 due to insuff… |
Teamviewer · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-2695 | Medium | 6.3 | — | 2026-05-13 | A command injection vulnerability was discovered in TeamViewer DEX Platform On-Premises (former 1E DEX Platform On-Premises) prior to version 9.2. Improper input validation allows authenticated users with at least questioner privileges to… |
Techlabpro1 · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-7563 | Medium | 4.3 | — | 2026-05-15 | The Classified Listing – AI-Powered Classified ads & Business Directory Plugin plugin for WordPress is vulnerable to unauthorized access in all versions up to, and including, 5.3.10. |
Teodesian · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-46474 | High | 7.5 | — | 2026-05-15 | Trog::TOTP versions before 1.006 for Perl generate secrets using rand. |
The Openthread Authors · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-8369 | — | — | — | 2026-05-13 | Improper Input Validation in the NAT64 translator in The OpenThread Authors OpenThread before commit 26a882d on all platforms allows an attacker on the adjacent IPv4 network to inject corrupted IPv6 packets into the Thread mesh or bypass s… |
Themeum · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-6965 | Medium | 5.3 | — | 2026-05-13 | The Tutor LMS – eLearning and online course solution plugin for WordPress is vulnerable to Insecure Direct Object Reference in versions up to and including 3.9.9. |
Theonedev · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44647 | — | — | — | 2026-05-14 | OneDev is a Git server with CI/CD, kanban, and packages. |
Thewebsitesupply · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-6663 | Medium | 4.8 | — | 2026-05-12 | The GWD Connect plugin for WordPress is vulnerable to missing authorization to limited code execution in all versions up to, and including, 2.9. |
Thimpress · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-7648 | Medium | 4.3 | — | 2026-05-14 | The LearnPress – WordPress LMS Plugin for Create and Sell Online Courses plugin for WordPress is vulnerable to payment bypass through user-controlled key in all versions up to, and including, 4.3.5. |
Thymeleaf · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-41901 | Critical | 9.0 | — | 2026-05-12 | Thymeleaf is a server-side Java template engine for web and standalone environments. |
Tienrocker · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-7561 | Medium | 6.1 | — | 2026-05-12 | The Tm – WordPress Redirection plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.2. |
Tkc49 · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-6247 | Medium | 6.4 | — | 2026-05-12 | The scratchblocks for WP plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'element' attribute of the 'scratchblocks' shortcode in all versions up to, and including, 1.0.1 due to insufficient input sanitization and… |
Toddr · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-5089 | High | 7.3 | — | 2026-05-12 | YAML::Syck versions before 1.38 for Perl has an out-of-bounds read. |
Trapesium · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-7464 | Medium | 6.1 | — | 2026-05-12 | The WP Google Maps Integration plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the `page` parameter in all versions up to, and including, 1.2. |
Twisted · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-42304 | High | 7.5 | — | 2026-05-13 | Twisted is an event-based framework for internet applications, supporting Python 3.6+. |
Ultimate Member · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2020-37169 | Medium | 5.5 | — | 2026-05-13 | WordPress Plugin ultimate-member 2.1.3 contains a local file inclusion vulnerability that allows authenticated attackers to include arbitrary files by manipulating the pack parameter in class-admin-upgrade.php. |
Unitecms · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-5486 | Medium | 6.5 | — | 2026-05-14 | The Unlimited Elements for Elementor plugin for WordPress is vulnerable to SQL Injection via the 'data[filter_search]' parameter in the get_cat_addons AJAX action in versions up to and including 2.0.7. |
Unknown · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-6433 | High | 7.3 | — | 2026-05-11 | The Custom css-js-php WordPress plugin through 2.0.7 does not properly sanitize user input before using it in a SQL query, and the result is passed to eval(), allowing unauthenticated users to execute arbitrary PHP code on the server. |
Vectifyai · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-8318 | Medium | 5.3 | — | 2026-05-11 | A security flaw has been discovered in VectifyAI PageIndex up to f50e52975313c6716c02b20a119577a1929decba. |
Verint · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-21730 | Medium | 6.1 | — | 2026-05-14 | Verba is affected by a Stored Cross-Site Scripting (XSS) vulnerability within its login logging mechanism. |
Videowhisper · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-4301 | Medium | 4.3 | — | 2026-05-12 | The Rate Star Review Vote - AJAX Reviews, Votes, Star Ratings plugin for WordPress is vulnerable to Missing Authorization in all versions up to and including 1.6.4. |
Vim · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-46483 | Low | 3.6 | — | 2026-05-15 | Vim is an open source, command line text editor. |
Warpgate_project · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44347 | Medium | 5.8 | — | 2026-05-12 | Warpgate is an open source SSH, HTTPS and MySQL bastion host for Linux. |
Wavelens · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44592 | Critical | 9.4 | — | 2026-05-14 | Gradient is a nix-based continuous integration system. |
Webassembly · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-8257 | Low | 3.3 | — | 2026-05-11 | A vulnerability was detected in WebAssembly Binaryen up to 117. |
Webaways · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-7046 | Medium | 4.9 | — | 2026-05-15 | The NEX-Forms – Ultimate Forms Plugin for WordPress plugin for WordPress is vulnerable to time-based blind SQL Injection via the 'table' parameter in all versions up to, and including, 9.1.12 due to insufficient escaping on the user suppli… |
Webcon · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-1630 | — | — | — | 2026-05-14 | WEBCON BPS is vulnerable to Reflected XSS via one of parameters used by "/openinmobileapp" endpoint. An attacker can send a specially crafted URL that, when opened by an authenticated user, results in arbitrary JavaScript execution in the… |
Webmuehle · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-1250 | High | 7.5 | — | 2026-05-12 | The Court Reservation – Manage Your Court Bookings Online plugin for WordPress is vulnerable to generic SQL Injection via the ‘id’ parameter in all versions up to, and including, 1.10.11 due to insufficient escaping on the user supplied pa… |
Webpack-dev-server · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-6402 | Medium | 5.3 | — | 2026-05-12 | webpack-dev-server versions up to and including 5.2.3 are vulnerable to cross-origin source code exposure when serving over a non-potentially trustworthy origin such as plain HTTP. |
Websockets · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-45736 | Medium | 4.4 | — | 2026-05-15 | ws is an open source WebSocket client and server for Node.js. |
Websoudan · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-6206 | Medium | 5.3 | — | 2026-05-14 | The MW WP Form plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 5.1.2 via the _get_post_property_from_querystring() function due to insufficient restrictions on which posts can be included. |
Wellbia · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-3609 | High | 7.8 | — | 2026-05-11 | Wellbia's XIGNCODE3 xhunter1.sys kernel driver Privilege Escalation Vulnerability provides access to IRP_MJ_REITS command interface, which allows any user process to request a PROCESS_ALL_ACCESS. Cross reference to KVE 2023-5589 (https://… |
Wftpserver · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44403 | High | 7.2 | — | 2026-05-12 | Wing FTP Server before 8.1.3 contains an authenticated remote code execution vulnerability in the session serialization mechanism that allows authenticated administrators to inject arbitrary Lua code through the domain admin mydirectory fi… |
Wgdashboard · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44343 | Critical | 9.8 | — | 2026-05-12 | WGDashboard is a dashboard for WireGuard VPN. |
Wger-project · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-43948 | Critical | 9.9 | — | 2026-05-12 | wger is a free, open-source workout and fitness manager. |
Workos · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-42565 | Medium | 4.3 | — | 2026-05-11 | @workos/authkit-session is a toolkit for building WorkOS AuthKit framework integrations. |
Wp Travel · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-45218 | High | 7.7 | — | 2026-05-12 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in WP Travel WP Travel wp-travel allows Blind SQL Injection.This issue affects WP Travel: from n/a through <= 11.4.0. |
Wp-super-edit · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2021-47965 | Critical | 9.8 | — | 2026-05-15 | WordPress Plugin WP Super Edit 2.5.4 and earlier contains an unrestricted file upload vulnerability in the FCKeditor component that allows attackers to upload dangerous file types without validation. |
Wpclever · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2025-14767 | Medium | 5.5 | — | 2026-05-13 | The WPC Badge Management for WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'text' attribute of the `wpcbm_best_seller` shortcode in all versions up to, and including, 3.1.6 due to insufficient input… |
Wpcodefactory · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-6962 | Medium | 6.4 | — | 2026-05-13 | The Cost of Goods: Product Cost & Profit Calculator for WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'alg_wc_cog_product_cost' and 'alg_wc_cog_product_profit' shortcodes in all versions up… |
Wpdevteam · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-5193 | Medium | 6.5 | — | 2026-05-14 | The Essential Addons for Elementor – Popular Elementor Templates & Widgets plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 6.5.13. |
Wpeverest · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-6145 | Medium | 5.3 | — | 2026-05-14 | The User Registration & Membership plugin for WordPress is vulnerable to Missing Authorization in all versions up to, and including, 5.1.5. |
Wpgraphql · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2021-47959 | High | 7.5 | — | 2026-05-15 | WordPress Plugin WPGraphQL 1.3.5 contains a denial of service vulnerability that allows unauthenticated attackers to exhaust server resources by sending batched GraphQL queries with duplicated fields. |
Wpmu Dev · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-25431 | Medium | 5.3 | — | 2026-05-12 | Missing Authorization vulnerability in WPMU DEV Hustle allows Exploiting Incorrectly Configured Access Control Security Levels. |
Wproyal · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-6504 | Medium | 6.4 | — | 2026-05-14 | The Royal Elementor Addons and Templates plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'title_tag' parameter in all versions up to, and including, 1.7.1058 due to insufficient input sanitization and output escap… |
Wupsales · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-2993 | High | 7.5 | — | 2026-05-12 | The AI Chatbot & Workflow Automation by AIWU plugin for WordPress is vulnerable to SQL Injection in versions up to, and including, 1.4.17 due to insufficient escaping on user supplied parameters and lack of sufficient preparation on the ex… |
Www.huawei.com · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2020-37220 | High | 7.5 | — | 2026-05-13 | Huawei HG630 V2 router contains an authentication bypass vulnerability that allows unauthenticated attackers to obtain administrative access by retrieving the device serial number. |
Xibosignage · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-42141 | High | 7.7 | — | 2026-05-12 | Xibo is an open source digital signage platform with a web content management system and Windows display player software. |
Xpro · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-45214 | High | 8.5 | — | 2026-05-12 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Xpro Xpro Elementor Addons xpro-elementor-addons allows Blind SQL Injection.This issue affects Xpro Elementor Addons: from n/a through <=… |
Yubico · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-46419 | High | 7.5 | — | 2026-05-14 | Yubico webauthn-server-core (aka java-webauthn-server) 2.8.0 before 2.8.2 incorrectly checks a function's return value in the second factor flow, leading to impersonation. |
Zealopensource · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-5693 | Medium | 5.3 | — | 2026-05-12 | The Smart Appointment & Booking plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check and a nonce validation logic flaw in the saab_cancel_booking() function in all versions up to, and in… |
Zelon88 · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44666 | — | — | — | 2026-05-14 | HRConvert2 is a self-hosted, drag-and-drop & nosql file conversion server & share tool. |
Zitadel · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-44671 | High | 7.5 | — | 2026-05-14 | ZITADEL is an open source identity management platform. |
Zulip · 1 CVE
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-40300 | Medium | 6.5 | — | 2026-05-12 | Zulip is an open-source team collaboration tool. |