CVE Database

9215+ vulnerabilities with CVSS scores, EPSS exploit predictions, and CISA KEV status. Updated daily.

Filter: All CRITICAL HIGH MEDIUM LOW CISA KEV
Sort: Newest CVSS EPSS
CVE-2026-10931
9.6 CRITICAL

Use after free in FileSystem in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML …

Jun 4, 2026
CVE-2026-10892
9.6 CRITICAL

Out of bounds write in GPU in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via …

Jun 4, 2026
CVE-2026-10886
9.6 CRITICAL

Use after free in FileSystem in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML …

Jun 4, 2026
CVE-2026-10881
9.6 CRITICAL

Out of bounds read and write in ANGLE in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via …

Jun 4, 2026
CVE-2024-27892
9.6 CRITICAL

Affected platforms running Arista EOS with OpenConfig configured, a gNMI Set request can be run when it should have been rejected. This can result in …

Jun 4, 2026
CVE-2024-27890
9.6 CRITICAL

Affected platforms running Arista EOS with OpenConfig configured, a gNMI Set request can be run when it should have been rejected. This can result in …

Jun 4, 2026
CVE-2025-71316
9.8 CRITICAL

SQLite 'sqldiff.exe' does not securely handle the way the Microsoft Windows C runtime converts Unicode characters to ANSI codepages. An attacker could use the '-L' …

Jun 4, 2026
CVE-2026-48040
9.1 CRITICAL

The netty incubator codec.bhttp is a java language binary http parser. The library implements Oblivious HTTP (RFC 9458) using BoringSSL's HPKE C library via JNI. …

Jun 4, 2026
CVE-2026-25550
9.8 CRITICAL

Seagull Software BarTender 2010, 2016, and 2019 contain an unauthenticated remote code execution vulnerability in the .NET Remoting service exposed on TCP port 7375 via …

Jun 4, 2026
CVE-2026-10880
9.8 CRITICAL

OSNexus QuantaStor SDS Manager is vulnerable to SQL injection in the login endpoint. The username field is not properly sanitized before being incorporated into a …

Jun 4, 2026
CVE-2025-67447
9.8 CRITICAL

The network diagnosis (ping) module in Neterbit NW-431F Router 20241014-IR03 and before is vulnerable to OS command injection. The application does not properly sanitize user …

Jun 4, 2026
CVE-2026-50076
9.1 CRITICAL

Deserialization of Untrusted Data in the Java replace-resolve path in Apache Fory fory-core Java SDK before 1.1.0 on Java/JVM platforms allows a remote attacker to …

Jun 4, 2026
CVE-2025-67446
9.8 CRITICAL

Improper Authentication (Authentication Bypass) exists in Neterbit NW-431F Router 20241014-IR03 and before. The router uses a weak/predictable cookie value for authentication. By modifying the cookie …

Jun 4, 2026
CVE-2026-43986
9.9 CRITICAL

Tautulli is a Python based monitoring and tracking tool for Plex Media Server. Versions prior to 2.17.1 expose a public `/image/<hash>` route that resolves attacker-controlled …

Jun 4, 2026
CVE-2026-36182
9.8 CRITICAL

GNCC GP5 v7.1.76 was discovered to utilize a weak hashing algorithm to protect the root password, possibly allowing attackers to obtain root credentials and privileges …

Jun 4, 2026
CVE-2026-35906
9.6 CRITICAL

An undocumented debug CGI endpoint in T3 Technology CPE models T625Pro v1.0.07, T6825G v1.0.03 allows unauthenticated attackers to execute arbitrary system commands as root via …

Jun 4, 2026
CVE-2026-35905
9.8 CRITICAL

T3 Technology CPE models T625Pro v1.0.07, T6825G v1.0.03, and T7281 v1.0.03 were discovered to contain a hardcoded password for root access under the "superadmin" account.

Jun 4, 2026
CVE-2026-35904
9.8 CRITICAL

Incorrect access control in the web management interface of T3 Technology CPE models T625Pro v1.0.07, T6825G v1.0.03, and T7281 v1.0.03 allows unauthorized attackers to enable …

Jun 4, 2026
CVE-2026-8037
9.6 CRITICAL

OS Command Injection Remote Code Execution Vulnerability in API in Progress ADC Products allows an un-authenticated attacker to execute arbitrary commands on the LoadMaster appliance …

Jun 4, 2026
CVE-2019-25741
9.8 CRITICAL

Mobatek MobaXterm 12.1 contains a structured exception handling (SEH) based buffer overflow vulnerability in the username field of session files that allows remote attackers to …

Jun 4, 2026
CVE-2019-25738
9.8 CRITICAL

WordPress Hybrid Composer 1.4.6 contains an unauthenticated settings change vulnerability that allows unauthenticated attackers to modify WordPress options by exploiting the hc_ajax_save_option action. Attackers can …

Jun 4, 2026
CVE-2019-25729
9.8 CRITICAL

PDF Signer 3.0 contains a server-side template injection vulnerability that allows unauthenticated attackers to execute arbitrary code by injecting PHP commands through the CSRF-TOKEN cookie …

Jun 4, 2026
CVE-2019-25727
9.8 CRITICAL

WordPress Plugin ad manager wd 1.0.11 contains an arbitrary file download vulnerability that allows unauthenticated attackers to download sensitive files by manipulating the path parameter. …

Jun 4, 2026
CVE-2026-4104
9.8 CRITICAL

Authorization bypass through User-Controlled SQL primary key vulnerability in Akmer Informatics Automation Industry and Trade Ltd. Co. TeknoPass allows SQL Injection. This issue affects TeknoPass: …

Jun 4, 2026
CVE-2026-50225
9.1 CRITICAL

The registration path /v1/account/register provides no bot mitigation mechanisms, allowing malicious automated systems to flood the database.

Jun 4, 2026
CVE-2026-50214
9.8 CRITICAL

The /v1/Plan service relies entirely on a shared global API token for full administrative management, allowing arbitrary creation of zero-cost network access plans.

Jun 4, 2026
CVE-2026-50211
9.8 CRITICAL

Leftover engineering diagnostics and factory-level diagnostic software remain exposed on retail builds, giving malicious apps write privileges to internal NVRAM registers.

Jun 4, 2026
CVE-2026-50208
9.4 CRITICAL

High-risk TrustAllCerts routines disable standard TLS certificate validation. Combined with hard-coded DES symmetric encryption keys, a Man-in-the-Middle (MITM) actor could decrypt network traffic.

Jun 4, 2026
CVE-2026-49191
9.8 CRITICAL

The production build of the M3WebServer hard-codes its backend API keys, which can be easily intercepted through verbose error handling pages.

Jun 4, 2026
CVE-2026-49188
9.8 CRITICAL

The ai_cmd utility executes with full root permissions. It pipes socket inputs directly to popen(), paving the way for unauthenticated users to execute arbitrary root …

Jun 4, 2026
CVE-2026-49186
9.8 CRITICAL

The local MQTT broker does not enforce topic-level Access Control Lists (ACLs). This allows any client to subscribe using wildcard characters (# or +) to …

Jun 4, 2026
CVE-2026-49185
9.8 CRITICAL

The FieldX MDM adb messaging topic passes unverified payloads directly into Runtime.exec(), allowing command/instruction injection.

Jun 4, 2026
CVE-2026-41283
9.9 CRITICAL

OpenStack Mistral through 22.0.0 allows Arbitrary Remote Code Execution when the API is exposed. There are endpoints that allow code execution, which can lead to …

Jun 4, 2026
CVE-2026-46266
9.1 CRITICAL

In the Linux kernel, the following vulnerability has been resolved: inet: RAW sockets using IPPROTO_RAW MUST drop incoming ICMP Yizhou Zhao reported that simply having …

Jun 3, 2026
CVE-2026-46244
9.1 CRITICAL

In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_inner: Fix IPv6 inner_thoff desync In nft_inner_parse_l2l3(), when processing inner IPv6 packets, ipv6_find_hdr() correctly …

Jun 3, 2026
CVE-2026-36748
9.0 CRITICAL

RockRMS v16.13 and before v.17.7.0 is vulnerable to Cross Site Scripting (XSS) via Social Media links in user profile.

Jun 3, 2026
CVE-2026-36576
9.8 CRITICAL

An OS command injection vulnerability in the app.py component of openlabs docker-wkhtmltopdf-aas up to commit 9f50579 allows attackers to execute arbitrary commands via a crafted …

Jun 3, 2026
CVE-2026-5241
9.6 CRITICAL

A vulnerability in the LightGlue model loading path of huggingface/transformers version 5.2.0 allows an attacker-controlled model repository to execute arbitrary code during model initialization. The …

Jun 3, 2026
CVE-2026-35075
9.8 CRITICAL

An unauthenticated remote attacker can recover a default, hard coded password from a firmware image and thus gain full access to all affected devices.

Jun 3, 2026
CVE-2026-47065
9.8 CRITICAL

ZDRES-232: resolveProxyClass Not Overridden - acceptMatchers Filter Bypass via java.lang.reflect.Proxy Assessment: Fully addressed. When the serialised stream contains a TC_PROXYCLASSDESC (the marker for a java.lang.reflect.Proxy …

Jun 3, 2026
CVE-2025-14771
9.9 CRITICAL

Files or directories accessible to external parties vulnerability in ABB T-MAC Plus. This issue affects T-MAC Plus: 4.0-24.

Jun 3, 2026
CVE-2026-32625
9.6 CRITICAL

LibreChat is an enhanced ChatGPT clone that supports multiple AI providers. In versions up to and including 0.8.3, the Model Context Protocol (MCP) server integration …

Jun 2, 2026
CVE-2026-49448
9.8 CRITICAL

authentik is an open-source identity provider. Prior to versions 2025.12.6, 2026.2.4, and 2026.5.1, the Source stage can be bypassed by sending an empty POST. This …

Jun 2, 2026
CVE-2026-42849
9.3 CRITICAL

authentik is an open-source identity provider. Prior to versions 2025.12.5 and 2026.2.3, due to the implementation of stages in the SFE (Simple Flow Executor) in …

Jun 2, 2026
CVE-2026-5076
9.8 CRITICAL

The ARMember Premium plugin for WordPress is vulnerable to an insecure password reset mechanism in all versions up to, and including, 7.3.1. The plugin stores …

Jun 2, 2026
CVE-2026-38967
9.8 CRITICAL

CrowCpp Crow through v1.3.1 HTTP is vulnerable to response header injection via unvalidated response header values.

Jun 2, 2026
CVE-2026-42074
9.8 CRITICAL

OpenClaude is an open-source coding-agent command line interface for cloud and local model providers. Prior to version 0.5.1, the dangerouslyDisableSandbox parameter is exposed as part …

Jun 2, 2026
CVE-2026-0611
9.8 CRITICAL

Spacelabs Healthcare Sentinel versions 10.5.x and higher and 11.x.x before 11.6.0 contain an unauthenticated remote code execution vulnerability through a deprecated .NET Remoting HTTP channel …

Jun 2, 2026
CVE-2026-47117
9.8 CRITICAL

OpenMed before 1.5.2 contains a remote code execution vulnerability in the PII privacy-filter model loading path. The privacy-filter dispatcher used broad substring matching on the …

Jun 2, 2026
CVE-2026-7312
10.0 CRITICAL

CWE‑522: Insufficiently Protected Credentials in web services in Progress Sitefinity version from 14.0.7700 to 14.4.8152, and 15.0.8200 to 15.0.8234, and 15.1.8300 to 15.1.8335, 15.2.8400 to …

Jun 2, 2026

Scan your infrastructure for known CVEs

Free website and port scanning — find vulnerabilities before attackers do.