CVE Database

36368+ vulnerabilities with CVSS scores, EPSS exploit predictions, and CISA KEV status. Updated daily.

Filter: All CRITICAL HIGH MEDIUM LOW CISA KEV
Sort: Newest CVSS EPSS
CVE-2026-34180
7.5 HIGH

Issue summary: Parsing a crafted DER-encoded ASN.1 structure with a primitive element whose content exceeds 2 gigabytes in length may cause a heap buffer over-read …

Jun 9, 2026
CVE-2026-33828
7.8 HIGH

Trust boundary violation in Windows Attestation allows an authorized attacker to elevate privileges locally.

Jun 9, 2026
CVE-2026-32193
8.8 HIGH

Improper limitation of a pathname to a restricted directory ('path traversal') in Microsoft Azure Kubernetes Service allows an authorized attacker to execute code locally.

Jun 9, 2026
CVE-2026-24181
7.3 HIGH

NVIDIA DALI contains a vulnerability in a component where an attacker could cause an improper index validation. A successful exploit of this vulnerability might lead …

Jun 9, 2026
CVE-2026-24180
7.3 HIGH

NVIDIA DALI contains a vulnerability in a component where an attacker could cause a heap-based buffer overflow. A successful exploit of this vulnerability might lead …

Jun 9, 2026
CVE-2026-22926
7.8 HIGH

Omnissa Workspace ONE® Assist for macOS contains a Local Privilege Escalation Vulnerability.

Jun 9, 2026
CVE-2026-49948
8.1 HIGH

Mem0 versions through 0.2.8, fixed in commit ae7f406, contain a missing authorization vulnerability in the self-hosted server component where the POST /configure endpoint modifies global …

Jun 9, 2026
CVE-2026-24065
8.1 HIGH

Waves Central for macOS versions 13.0.9 through 16.5.5 contain a local privilege escalation vulnerability in the privileged helper service. The helper validates connecting XPC clients …

Jun 9, 2026
CVE-2026-24064
7.8 HIGH

Waves Central for macOS versions 13.0.9 through 16.5.5 contain a local privilege escalation vulnerability. A trusted XPC client component included with the product is signed …

Jun 9, 2026
CVE-2026-10727
7.2 HIGH

An OS command injection vulnerability in Ivanti EPMM before 12.9.0.1, 12.8.0.3 and 12.7.0.2 versions allows a remote authenticated attacker to execute arbitrary commands as root

Jun 9, 2026
CVE-2026-52907
7.8 HIGH

In the Linux kernel, the following vulnerability has been resolved: media: rockchip: rkcif: fix off by one bugs Change these comparisons from > vs >= …

Jun 9, 2026
CVE-2026-52906
7.7 HIGH

In the Linux kernel, the following vulnerability has been resolved: 9p: fix access mode flags being ORed instead of replaced Since commit 1f3e4142c0eb ("9p: convert …

Jun 9, 2026
CVE-2026-46332
8.0 HIGH

In the Linux kernel, the following vulnerability has been resolved: greybus: gb-beagleplay: bound bootloader receive buffering cc1352_bootloader_rx() appends each serdev chunk into the fixed rx_buffer …

Jun 9, 2026
CVE-2026-46330
7.8 HIGH

In the Linux kernel, the following vulnerability has been resolved: Revert "net/smc: Introduce TCP ULP support" This reverts commit d7cd421da9da2cc7b4d25b8537f66db5c8331c40. As reported by Al Viro, …

Jun 9, 2026
CVE-2026-46328
7.3 HIGH

In the Linux kernel, the following vulnerability has been resolved: apparmor: fix rlimit for posix cpu timers Posix cpu timers requires an additional step beyond …

Jun 9, 2026
CVE-2026-46327
7.8 HIGH

In the Linux kernel, the following vulnerability has been resolved: dm: fix unlocked test for dm_suspended_md The function dm_blk_report_zones tests if the device is suspended …

Jun 9, 2026
CVE-2026-46326
8.4 HIGH

In the Linux kernel, the following vulnerability has been resolved: iio: pressure: mprls0025pa: fix spi_transfer struct initialisation Make sure that the spi_transfer struct is zeroed …

Jun 9, 2026
CVE-2026-46324
7.8 HIGH

In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: use list_del_rcu for netlink hooks nft_netdev_unregister_hooks and __nft_unregister_flowtable_net_hooks need to use list_del_rcu(), this …

Jun 9, 2026
CVE-2026-46323
7.8 HIGH

In the Linux kernel, the following vulnerability has been resolved: net: gro: don't merge zcopy skbs skb_gro_receive() can currently copy frags between the source and …

Jun 9, 2026
CVE-2026-46322
7.1 HIGH

In the Linux kernel, the following vulnerability has been resolved: tun: free page on build_skb failure in tun_xdp_one() When build_skb() fails in tun_xdp_one(), the function …

Jun 9, 2026
CVE-2026-46321
7.1 HIGH

In the Linux kernel, the following vulnerability has been resolved: tun: free page on short-frame rejection in tun_xdp_one() tun_xdp_one() returns -EINVAL on a frame shorter …

Jun 9, 2026
CVE-2026-46320
7.4 HIGH

In the Linux kernel, the following vulnerability has been resolved: tap: free page on error paths in tap_get_user_xdp() tap_get_user_xdp() rejects a frame shorter than ETH_HLEN …

Jun 9, 2026
CVE-2026-46319
7.8 HIGH

In the Linux kernel, the following vulnerability has been resolved: net/sched: act_ct: Only release RCU read lock after ct_ft When looking up a flow table …

Jun 9, 2026
CVE-2026-46317
8.8 HIGH

In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: Reassign nested_mmus array behind mmu_lock kvm->arch.nested_mmus[] is walked under kvm->mmu_lock, including from the …

Jun 9, 2026
CVE-2017-20250
7.5 HIGH

Mac Photo Gallery 3.0 contains a path traversal vulnerability that allows unauthenticated attackers to download arbitrary files by manipulating the albid parameter. Attackers can send …

Jun 9, 2026
CVE-2017-20249
8.2 HIGH

Apptha Slider Gallery 1.0 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the albid …

Jun 9, 2026
CVE-2017-20248
7.5 HIGH

Apptha Slider Gallery 1.0 contains a path traversal vulnerability that allows unauthenticated attackers to download arbitrary files by manipulating the imgname parameter. Attackers can send …

Jun 9, 2026
CVE-2017-20247
8.2 HIGH

WordPress Plugin PICA Photo Gallery 1.0 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through …

Jun 9, 2026
CVE-2017-20246
8.2 HIGH

KittyCatfish 2.2 plugin for WordPress contains an SQL injection vulnerability that allows unauthenticated attackers to read database contents by exploiting an unescaped GET parameter. Attackers …

Jun 9, 2026
CVE-2017-20245
8.2 HIGH

Wow Viral Signups 2.1 WordPress plugin contains an SQL injection vulnerability that allows unauthenticated attackers to extract database information by exploiting the unescaped 'idsignup' POST …

Jun 9, 2026
CVE-2017-20244
8.2 HIGH

Wow Forms WordPress Plugin version 2.1 contains an SQL injection vulnerability that allows unauthenticated attackers to read arbitrary database information by exploiting an unescaped POST …

Jun 9, 2026
CVE-2017-20243
8.2 HIGH

WordPress Car Park Booking Plugin version 13 October 17 contains a time-based SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting …

Jun 9, 2026
CVE-2016-20065
8.2 HIGH

Product Catalog 8 1.2 plugin for WordPress contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code …

Jun 9, 2026
CVE-2016-20063
7.1 HIGH

Single Personal Message 1.0.3 contains an SQL injection vulnerability that allows authenticated users to execute arbitrary SQL queries by injecting malicious code through the message …

Jun 9, 2026
CVE-2016-20062
8.2 HIGH

Simply Poll 1.4.1 plugin for WordPress contains an SQL injection vulnerability that allows unauthenticated attackers to extract database information by injecting SQL code through the …

Jun 9, 2026
CVE-2026-46749
7.5 HIGH

A vulnerability has been identified in SINEC INS (All versions < V1.0 SP2 Update 6). The affected application uses a password hashing implementation with a …

Jun 9, 2026
CVE-2026-46748
8.8 HIGH

A vulnerability has been identified in SINEC INS (All versions < V1.0 SP2 Update 6). The affected system includes a binary that is configured with …

Jun 9, 2026
CVE-2026-46746
8.8 HIGH

A vulnerability has been identified in SINEC INS (All versions < V1.0 SP2 Update 6). The application does not properly sanitize user input in the …

Jun 9, 2026
CVE-2026-41031
8.7 HIGH

A Stored Cross-Site Scripting vulnerability in Vinna Process Monitor Version 4.0 Service Pack 1 (Build 63255) allows an authenticated remote attacker with low privileges to …

Jun 9, 2026
CVE-2026-24349
7.1 HIGH

A vulnerability has been identified in SIMATIC WinCC Unified PC Runtime V16 (All versions), SIMATIC WinCC Unified PC Runtime V17 (All versions), SIMATIC WinCC Unified …

Jun 9, 2026
CVE-2026-8365
8.8 HIGH

The Blocksy theme for WordPress is vulnerable to PHP Object Injection leading to Remote Code Execution via the 'blocksy_meta' REST API field and the V200 …

Jun 9, 2026
CVE-2026-11616
8.8 HIGH

The Events Calendar for GeoDirectory plugin for WordPress is vulnerable to Privilege Escalation in versions up to and including 2.3.28. This is due to the …

Jun 9, 2026
CVE-2026-5068
7.6 HIGH

A remote, unauthenticated BLE peer can trigger a 2-byte out-of-bounds write in the Bluetooth host during L2CAP LE CoC SDU reassembly. When the application enables …

Jun 9, 2026
CVE-2026-11572
8.8 HIGH

Versions of the package degit before 2.8.6, from 3.0.0 and before 3.3.1 are vulnerable to Command Injection due to improper sanitisation of user input for …

Jun 9, 2026
CVE-2026-9662
8.1 HIGH

The Recover Exit For WooCommerce plugin for WordPress is vulnerable to Local File Inclusion in all versions up to and including 1.0.3. This is due …

Jun 9, 2026
CVE-2026-9185
7.5 HIGH

The 6Storage Rentals plugin for WordPress is vulnerable to Authorization Bypass Through User-Controlled Key in all versions up to and including 2.22.0 via the `userId` …

Jun 9, 2026
CVE-2026-41855
8.1 HIGH

In an untrusted JMS environment, org.springframework.jms.support.converter.MappingJackson2MessageConverter and org.springframework.jms.support.converter.JacksonJsonMessageConverter allow arbitrary class instantiation, which can lead to unauthorized actions via gadget class deserialization. Affected versions: Spring …

Jun 9, 2026
CVE-2026-41850
7.5 HIGH

Applications that evaluate user-supplied Spring Expression Language (SpEL) expressions are vulnerable to an Algorithmic Denial of Service (DoS). By providing a specially crafted expression, an …

Jun 9, 2026
CVE-2026-41849
7.5 HIGH

An integer overflow vulnerability exists in the evaluation logic of the Spring Expression Language (SpEL). An attacker can exploit this by supplying a specially crafted …

Jun 9, 2026
CVE-2026-41845
7.1 HIGH

Due to incorrect escaping, the use of JavaScriptUtils.javaScriptEscape() may lead to JavaScript code injection in the browser, potentially resulting in a cross-site scripting (XSS) vulnerability. …

Jun 9, 2026

Scan your infrastructure for known CVEs

Free website and port scanning — find vulnerabilities before attackers do.