31,467 indexed
CVECVE vulnerabilities
31,467 CVEs indexed — newest first. Filter by CVSS severity or CISA KEV listing; KEV-flagged entries surface a rose pill. Authored by Adam Lundqvist.
Showing 1,001–1,050 of 8,314 in Critical · page 21 of 167
| ID | Title | Summary |
|---|---|---|
| CVE-2026-34002 | CVE-2026-34002 CVSS 6.1x.org | A flaw was found in the X.Org X server. This vulnerability, an out-of-bounds read, affects the XKB (X Keyboard Extension) modifier map handling. An attacker wi… |
| CVE-2026-34000 | CVE-2026-34000 CVSS 6.1x.org | A flaw was found in the X.Org X server. This out-of-bounds read vulnerability in the XKB geometry processing, specifically within the `CheckSetGeom()` and `Xkb… |
| CVE-2026-3400 | CVE-2026-3400 CVSS 9.8 | A security flaw has been discovered in Tenda AC15 up to 15.13.07.13. Affected by this issue is some unknown functionality of the file /goform/TextEditingConver… |
| CVE-2026-33994 | CVE-2026-33994 CVSS 9.8 | Locutus brings stdlibs of other programming languages to JavaScript for educational purposes. Starting in version 2.0.39 and prior to version 3.0.25, a prototy… |
| CVE-2026-33993 | CVE-2026-33993 CVSS 9.8 | Locutus brings stdlibs of other programming languages to JavaScript for educational purposes. Prior to version 3.0.25, the `unserialize()` function in `locutus… |
| CVE-2026-33990 | CVE-2026-33990 CVSS 9.1 | Docker Model Runner (DMR) is software used to manage, run, and deploy AI models using Docker. Prior to version 1.1.25, Docker Model Runner contains an SSRF vul… |
| CVE-2026-33976 | CVE-2026-33976 CVSS 9.6 | Notesnook is a note-taking app. Prior to version 3.3.11 on Web/Desktop and 3.3.17 on Android/iOS, a stored XSS in the Web Clipper rendering flow can be escalat… |
| CVE-2026-33950 | CVE-2026-33950 CVSS 9.4 | Signal K Server is a server application that runs on a central hub in a boat. Prior to version 2.24.0-beta.4, there is a privilege escalation vulnerability by … |
| CVE-2026-3395 | CVE-2026-3395 CVSS 9.8 | A flaw has been found in MaxSite CMS up to 109.1. This impacts the function eval of the file application/maxsite/admin/plugins/editor_markitup/preview-ajax.php… |
| CVE-2026-33945 | CVE-2026-33945 CVSS 9.6 | Incus is a system container and virtual machine manager. Incus instances have an option to provide credentials to systemd in the guest. For containers, this is… |
| CVE-2026-33943 | CVE-2026-33943 CVSS 9.8 | Happy DOM is a JavaScript implementation of a web browser without its graphical user interface. In versions 15.10.0 through 20.8.7, a code injection vulnerabil… |
| CVE-2026-33942 | CVE-2026-33942 CVSS 9.8 | Saloon is a PHP library that gives users tools to build API integrations and SDKs. Versions prior to 4.0.0 used PHP's unserialize() in AccessTokenAuthenticator… |
| CVE-2026-33937 | CVE-2026-33937 CVSS 9.8 | Handlebars provides the power necessary to let users build semantic templates. In versions 4.0.0 through 4.7.8, `Handlebars.compile()` accepts a pre-parsed AST… |
| CVE-2026-33897 | CVE-2026-33897 CVSS 9.9 | Incus is a system container and virtual machine manager. Prior to version 6.23.0, instance template files can be used to cause arbitrary read or writes as root… |
| CVE-2026-33896 | CVE-2026-33896 CVSS 9.1 | Forge (also called `node-forge`) is a native implementation of Transport Layer Security in JavaScript. Prior to version 1.4.0, `pki.verifyCertificateChain()` d… |
| CVE-2026-33890 | CVE-2026-33890 CVSS 9.8 | MyTube is a self-hosted downloader and player for several video websites Prior to version 1.8.71, an unauthenticated attacker can register an arbitrary passkey… |
| CVE-2026-33879 | CVE-2026-33879 CVSS 9.8 | Federated Learning and Interoperability Platform (FLIP) is an open-source platform for federated training and evaluation of medical imaging AI models across he… |
| CVE-2026-33875 | CVE-2026-33875 CVSS 9.3 | Gematik Authenticator securely authenticates users for login to digital health applications. Versions prior to 4.16.0 are vulnerable to authentication flow hij… |
| CVE-2026-33873 | CVE-2026-33873 CVSS 9.9 | Langflow is a tool for building and deploying AI-powered agents and workflows. Prior to version 1.9.0, the Agentic Assistant feature in Langflow executes LLM-g… |
| CVE-2026-33854 | CVE-2026-33854 CVSS 9.8 | Out-of-bounds Write vulnerability in MolotovCherry Android-ImageMagick7.This issue affects Android-ImageMagick7: before 7.1.2-10. |
| CVE-2026-33845 | CVE-2026-33845 CVSS 7.5gnu | A flaw in GnuTLS DTLS handshake parsing allows malformed fragments with zero length and non-zero offset, leading to an integer underflow during reassembly and … |
| CVE-2026-33844 | CVE-2026-33844 CVSS 9.0microsoft | Improper access control in Azure Managed Instance for Apache Cassandra allows an authorized attacker to execute code over a network. |
| CVE-2026-33843 | CVE-2026-33843 CVSS 9.1 | Authentication bypass using an alternate path or channel in Microsoft Azure Active Directory B2C allows an unauthorized attacker to elevate privileges over a n… |
| CVE-2026-33824 | CVE-2026-33824 CVSS 9.8 | Double free in Windows IKE Extension allows an unauthorized attacker to execute code over a network. |
| CVE-2026-33821 | CVE-2026-33821 CVSS 9.9 | Improper privilege management in Microsoft Dynamics 365 Customer Insights allows an authorized attacker to elevate privileges over a network. |
| CVE-2026-33819 | CVE-2026-33819 CVSS 9.8 | Deserialization of untrusted data in Microsoft Bing allows an unauthorized attacker to execute code over a network. |
| CVE-2026-33816 | CVE-2026-33816 CVSS 9.8 | Memory-safety vulnerability in github.com/jackc/pgx/v5. |
| CVE-2026-33815 | CVE-2026-33815 CVSS 9.8 | Memory-safety vulnerability in github.com/jackc/pgx/v5. |
| CVE-2026-3381 | CVE-2026-3381 CVSS 9.8 | Compress::Raw::Zlib versions through 2.219 for Perl use potentially insecure versions of zlib. Compress::Raw::Zlib includes a copy of the zlib library. Compre… |
| CVE-2026-33807 | CVE-2026-33807 CVSS 9.1fastify | @fastify/express v4.0.4 and earlier contains a path handling bug in the onRegister function that causes middleware paths to be doubled when inherited by child … |
| CVE-2026-33804 | CVE-2026-33804 CVSS 9.1 | @fastify/middie versions 9.3.1 and earlier are vulnerable to middleware bypass when the deprecated Fastify ignoreDuplicateSlashes option is enabled. The middle… |
| CVE-2026-33784 | CVE-2026-33784 CVSS 9.8 | A Use of Default Password vulnerability in the Juniper Networks Support Insights (JSI) Virtual Lightweight Collector (vLWC) allows an unauthenticated, netw… |
| CVE-2026-33770 | CVE-2026-33770 CVSS 9.8 | WWBN AVideo is an open source video platform. In versions up to and including 26.0, the `fixCleanTitle()` static method in `objects/category.php` constructs a … |
| CVE-2026-33768 | CVE-2026-33768 CVSS 9.1 | Astro is a web framework. Prior to version 10.0.2, the @astrojs/vercel serverless entrypoint reads the x-astro-path header and x_astro_path query parameter to … |
| CVE-2026-33765 | CVE-2026-33765 CVSS 9.8 | Pi-hole Admin Interface is a web interface for managing Pi-hole, a network-level ad and internet tracker blocking application. Versions prior to 6.0 have a cri… |
| CVE-2026-33749 | CVE-2026-33749 CVSS 9.0 | n8n is an open source workflow automation platform. Prior to versions 1.123.27, 2.13.3, and 2.14.1, an authenticated user with permission to create or modify w… |
| CVE-2026-33747 | CVE-2026-33747 CVSS 9.8 | BuildKit is a toolkit for converting source code to build artifacts in an efficient, expressive and repeatable manner. Prior to version 0.28.1, when using a cu… |
| CVE-2026-33746 | CVE-2026-33746 CVSS 9.8 | Convoy is a KVM server management panel for hosting businesses. From version 3.9.0-beta to before version 4.5.1, the JWTService::decode() method did not verify… |
| CVE-2026-33729 | CVE-2026-33729 CVSS 9.8 | OpenFGA is a high-performance and flexible authorization/permission engine built for developers and inspired by Google Zanzibar. In versions prior to 1.13.1, u… |
| CVE-2026-33718 | CVE-2026-33718 CVSS 9.9 | OpenHands is software for AI-driven development. Starting in version 1.5.0, a Command Injection vulnerability exists in the `get_git_diff()` method at `openhan… |
| CVE-2026-33716 | CVE-2026-33716 CVSS 9.4 | WWBN AVideo is an open source video platform. In versions up to and including 26.0, the standalone live stream control endpoint at `plugin/Live/standAloneFiles… |
| CVE-2026-33712 | CVE-2026-33712 CVSS 10.0 | Typebot is a chatbot builder tool. In versions 3.15.2 and prior, the preview chat endpoint (POST /api/v1/typebots/{typebotId}/preview/startChat) allows unauthe… |
| CVE-2026-33707 | CVE-2026-33707 CVSS 9.8 | Chamilo LMS is a learning management system. Prior to 1.11.38 and 2.0.0-RC.3, the default password reset mechanism generates tokens using sha1($email) with no … |
| CVE-2026-33701 | CVE-2026-33701 CVSS 9.8 | OpenTelemetry Java Instrumentation provides OpenTelemetry auto-instrumentation and instrumentation libraries for Java. In versions prior to 2.26.1, the RMI ins… |
| CVE-2026-33698 | CVE-2026-33698 CVSS 9.8 | Chamilo LMS is a learning management system. Prior to 1.11.38, a chained attack can enable otherwise-blocked PHP code from the main/install/ directory and allo… |
| CVE-2026-33689 | CVE-2026-33689 CVSS 9.1 | xrdp is an open source RDP server. Versions through 0.10.5 have an out-of-bounds read vulnerability in the pre-authentication RDP message parsing logic. A remo… |
| CVE-2026-33656 | CVE-2026-33656 CVSS 9.1 | EspoCRM is an open source customer relationship management application. Prior to version 9.3.4, EspoCRM's built-in formula scripting engine allowing updating a… |
| CVE-2026-33654 | CVE-2026-33654 CVSS 9.8 | nanobot is a personal AI assistant. Prior to version 0.1.6, an indirect prompt injection vulnerability exists in the email channel processing module (`nanobot/… |
| CVE-2026-33642 | CVE-2026-33642 CVSS 9.8 | Kitty is a cross-platform GPU based terminal. In versions 0.46.2 and below, the handle_compose_command() function in kitty/graphics.c performs bounds validatio… |
| CVE-2026-33640 | CVE-2026-33640 CVSS 9.8 | Outline is a service that allows for collaborative documentation. Outline implements an Email OTP login flow for users not associated with an Identity Provider… |