31,467 indexed
CVECVE vulnerabilities
31,467 CVEs indexed — newest first. Filter by CVSS severity or CISA KEV listing; KEV-flagged entries surface a rose pill. Authored by Adam Lundqvist.
Showing 451–500 of 8,314 in Critical · page 10 of 167
| ID | Title | Summary |
|---|---|---|
| CVE-2026-43379 | CVE-2026-43379 CVSS 9.8 | In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix use-after-free in smb_lazy_parent_lease_break_close() opinfo pointer obtained … |
| CVE-2026-43376 | CVE-2026-43376 CVSS 9.8 | In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix use-after-free by using call_rcu() for oplock_info ksmbd currently frees oploc… |
| CVE-2026-43341 | CVE-2026-43341 CVSS 9.8linux | In the Linux kernel, the following vulnerability has been resolved: net/ipv6: ioam6: prevent schema length wraparound in trace fill ioam6_fill_trace_data() s… |
| CVE-2026-43304 | CVE-2026-43304 CVSS 9.8 | In the Linux kernel, the following vulnerability has been resolved: libceph: define and enforce CEPH_MAX_KEY_LEN When decoding the key, verify that the key m… |
| CVE-2026-43208 | CVE-2026-43208 CVSS 9.8 | In the Linux kernel, the following vulnerability has been resolved: net: do not pass flow_id to set_rps_cpu() Blamed commit made the assumption that the RPS … |
| CVE-2026-43198 | CVE-2026-43198 CVSS 9.8 | In the Linux kernel, the following vulnerability has been resolved: tcp: fix potential race in tcp_v6_syn_recv_sock() Code in tcp_v6_syn_recv_sock() after th… |
| CVE-2026-43197 | CVE-2026-43197 CVSS 9.1 | In the Linux kernel, the following vulnerability has been resolved: netconsole: avoid OOB reads, msg is not nul-terminated msg passed to netconsole from the … |
| CVE-2026-4319 | CVE-2026-4319 CVSS 9.8 | A vulnerability was identified in code-projects Simple Food Order System 1.0. Affected by this vulnerability is an unknown functionality of the file /routers/a… |
| CVE-2026-43186 | CVE-2026-43186 CVSS 9.8 | In the Linux kernel, the following vulnerability has been resolved: ipv6: ioam: fix heap buffer overflow in __ioam6_fill_trace_data() On the receive path, __… |
| CVE-2026-43185 | CVE-2026-43185 CVSS 9.8 | In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix signededness bug in smb_direct_prepare_negotiation() smb_direct_prepare_negoti… |
| CVE-2026-43125 | CVE-2026-43125 CVSS 9.8 | In the Linux kernel, the following vulnerability has been resolved: dlm: validate length in dlm_search_rsb_tree The len parameter in dlm_dump_rsb_name() is n… |
| CVE-2026-4312 | CVE-2026-4312 CVSS 9.8dragonsoft | GCB/FCB Audit Software developed by DrangSoft has a Missing Authentication vulnerability, allowing unauthenticated remote attackers to directly access certain … |
| CVE-2026-43117 | CVE-2026-43117 CVSS 9.1linux | In the Linux kernel, the following vulnerability has been resolved: btrfs: tracepoints: get correct superblock from dentry in event btrfs_sync_file() If over… |
| CVE-2026-43114 | CVE-2026-43114 CVSS 9.4linux | In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_set_pipapo_avx2: don't return non-matching entry on expiry New test case f… |
| CVE-2026-43083 | CVE-2026-43083 CVSS 9.1linux | In the Linux kernel, the following vulnerability has been resolved: net: ioam6: fix OOB and missing lock When trace->type.bit6 is set: if (trace->type.b… |
| CVE-2026-43071 | CVE-2026-43071 CVSS 9.1linux | In the Linux kernel, the following vulnerability has been resolved: dcache: Limit the minimal number of bucket to two There is an OOB read problem on dentry_… |
| CVE-2026-43067 | CVE-2026-43067 CVSS 9.8 | In the Linux kernel, the following vulnerability has been resolved: ext4: handle wraparound when searching for blocks for indirect mapped blocks Commit 4865c… |
| CVE-2026-43039 | CVE-2026-43039 CVSS 9.8 | In the Linux kernel, the following vulnerability has been resolved: net: ti: icssg-prueth: fix missing data copy and wrong recycle in ZC RX dispatch emac_dis… |
| CVE-2026-43038 | CVE-2026-43038 CVSS 9.8 | In the Linux kernel, the following vulnerability has been resolved: ipv6: icmp: clear skb2->cb[] in ip6_err_gen_icmpv6_unreach() Sashiko AI-review observed: … |
| CVE-2026-43037 | CVE-2026-43037 CVSS 9.8 | In the Linux kernel, the following vulnerability has been resolved: ip6_tunnel: clear skb2->cb[] in ip4ip6_err() Oskar Kjos reported the following problem. … |
| CVE-2026-43011 | CVE-2026-43011 CVSS 9.8 | In the Linux kernel, the following vulnerability has been resolved: net/x25: Fix potential double free of skb When alloc_skb fails in x25_queue_rx_frame it c… |
| CVE-2026-42994 | CVE-2026-42994 CVSS 9.8 | Bitwarden CLI 2026.4.0 from 2026-04-22T21:57Z to 2026-04-22T23:30Z, when obtained from npm, had embedded malicious code. This is related to a Checkmarx supply … |
| CVE-2026-42960 | CVE-2026-42960 CVSS 10.0 | NLnet Labs Unbound up to and including version 1.25.0 is vulnerable to poisoning via promiscuous records for the authority section. Promiscuous RRSets that com… |
| CVE-2026-42901 | CVE-2026-42901 CVSS 10.0 | Origin validation error in Microsoft Entra ID allows an unauthorized attacker to elevate privileges over a network. |
| CVE-2026-42898 | CVE-2026-42898 CVSS 9.9 | Improper control of generation of code ('code injection') in Microsoft Dynamics 365 (on-premises) allows an authorized attacker to execute code over a network. |
| CVE-2026-42889 | CVE-2026-42889 CVSS 9.1 | Relay adds real-time collaboration to Obsidian. Relay Server versions 0.9.0 through 0.9.6 contain an authentication bypass in the multi-document WebSocket endp… |
| CVE-2026-42882 | CVE-2026-42882 CVSS 9.4 | oxyno-zeta/s3-proxy is an aws s3 proxy written in go. Prior to 5.0.0, s3-proxy contains an authentication bypass caused by inconsistent URL path interpretation… |
| CVE-2026-42880 | CVE-2026-42880 CVSS 9.6 | Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes. From versions 3.2.0 to before 3.2.11 and 3.3.0 to before 3.3.9, there is a missing au… |
| CVE-2026-42869 | CVE-2026-42869 CVSS 10.0 | SOCFortress CoPilot focuses on providing a single pane of glass for all your security operations needs. Prior to 0.1.57, SOCFortress CoPilot ships a hardcoded … |
| CVE-2026-42864 | CVE-2026-42864 CVSS 9.9 | FireFighter is an incident management application. Prior to 0.0.54, the POST /api/v2/firefighter/raid/jira_bot endpoint (CreateJiraBotView) is reachable withou… |
| CVE-2026-42858 | CVE-2026-42858 CVSS 9.9 | Open edX Platform enables the authoring and delivery of online learning at any scale. The sync_provider_data endpoint in SAMLProviderDataViewSet allows authent… |
| CVE-2026-42854 | CVE-2026-42854 CVSS 9.8 | arduino-esp32 is an Arduino core for the ESP32, ESP32-S2, ESP32-S3, ESP32-C3, ESP32-C6 and ESP32-H2 microcontrollers. Prior to 3.3.8, the WebServer multipart f… |
| CVE-2026-42833 | CVE-2026-42833 CVSS 9.1microsoft | Improper control of generation of code ('code injection') in Microsoft Dynamics 365 (on-premises) allows an authorized attacker to execute code over a network. |
| CVE-2026-4283 | CVE-2026-4283 CVSS 9.1 | The WP DSGVO Tools (GDPR) plugin for WordPress is vulnerable to unauthorized account destruction in all versions up to, and including, 3.1.38. This is due to t… |
| CVE-2026-42823 | CVE-2026-42823 CVSS 9.9 | Improper access control in Azure Logic Apps allows an authorized attacker to elevate privileges over a network. |
| CVE-2026-42822 | CVE-2026-42822 CVSS 10.0 | Improper authentication in Azure Local Disconnected Operations allows an unauthorized attacker to elevate privileges over a network. |
| CVE-2026-42812 | CVE-2026-42812 CVSS 9.9 | In Apache Iceberg, the table's metadata files are control files: they tell readers which data files belong to the table and which table version to read. `wr… |
| CVE-2026-42811 | CVE-2026-42811 CVSS 9.9 | In plain terms, Apache Polaris is supposed to issue short-lived GCS credentials that only work for one table's files, but a crafted namespace or table name can… |
| CVE-2026-42810 | CVE-2026-42810 CVSS 9.9 | Apache Polaris accepts literal `*` characters in namespace and table names. When it later builds temporary S3 access policies for delegated table access, those… |
| CVE-2026-42809 | CVE-2026-42809 CVSS 9.9 | Apache Polaris can issue broad temporary ("vended") storage credentials during staged table creation before the effective table location has been validated or … |
| CVE-2026-42799 | CVE-2026-42799 CVSS 9.8 | Out-of-bounds read vulnerability in ASR Kestrel (nr_fw modules) allows Overflow Buffers. This vulnerability is associated with program files Code/Nr/nr_fw/RA… |
| CVE-2026-42796 | CVE-2026-42796 CVSS 9.8 | Arelle before 2.39.10 contains an unauthenticated remote code execution vulnerability in the /rest/configure REST endpoint that accepts a plugins query paramet… |
| CVE-2026-42779 | CVE-2026-42779 CVSS 9.8 | The fix for CVE-2026-41635 was not applied to the 2.1.X and 2.2.X branches. Here was the original issue description: Apache MINA's AbstractIoBuffer.… |
| CVE-2026-42778 | CVE-2026-42778 CVSS 9.8 | The fix for CVE-2026-41409 was not applied to the 2.1.X and 2.2.X branches. Here was the original issue description: The fix for CVE-2024-52046 in Apache M… |
| CVE-2026-42774 | CVE-2026-42774 CVSS 9.3 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Crocoblock JetEngine allows SQL Injection. This issue af… |
| CVE-2026-42773 | CVE-2026-42773 CVSS 9.3 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in eMagicOne eMagicOne Store Manager allows Blind SQL Inject… |
| CVE-2026-4277 | CVE-2026-4277 CVSS 9.8 | An issue was discovered in 6.0 before 6.0.4, 5.2 before 5.2.13, and 4.2 before 4.2.30. Add permissions on inline model instances were not validated on submissi… |
| CVE-2026-42613 | CVE-2026-42613 CVSS 9.4 | Grav is a file-based Web platform. Prior to 2.0.0-beta.2, the Login::register() method in the Login plugin accepts attacker-controlled groups and access fields… |
| CVE-2026-42608 | CVE-2026-42608 CVSS 9.1 | Grav is a file-based Web platform. Prior to 2.0.0-beta.2, there is a Path Traversal vulnerability within the FormFlash core component. By manipulating the sess… |
| CVE-2026-42607 | CVE-2026-42607 CVSS 9.1 | Grav is a file-based Web platform. Prior to 2.0.0-beta.2, an authenticated user with administrative privileges can achieve Remote Code Execution (RCE) by uploa… |