31,509 indexed
CVECVE vulnerabilities
31,509 CVEs indexed — newest first. Filter by CVSS severity or CISA KEV listing; KEV-flagged entries surface a rose pill. Authored by Adam Lundqvist.
Showing 2,051–2,100 of 8,314 in Critical · page 42 of 167
| ID | Title | Summary |
|---|---|---|
| CVE-2026-23500 | CVE-2026-23500 CVSS 9.1 | Dolibarr is an enterprise resource planning (ERP) and customer relationship management (CRM) software package. In versions prior to 23.0.0 , the ODT to PDF con… |
| CVE-2026-23489 | CVE-2026-23489 CVSS 9.1 | Fields is a GLPI plugin that allows users to add custom fields on GLPI items forms. Prior to version 1.23.3, it is possible to execute arbitrary PHP code from … |
| CVE-2026-23478 | CVE-2026-23478 CVSS 9.8 | Cal.com is open-source scheduling software. From 3.1.6 to before 6.0.7, there is a vulnerability in a custom NextAuth JWT callback that allows attackers to gai… |
| CVE-2026-2347 | CVE-2026-2347 CVSS 9.8 | Authorization bypass through User-Controlled key vulnerability in Akilli Commerce Software Technologies Ltd. Co. E-Commerce Website allows Session Hijacking. … |
| CVE-2026-23455 | CVE-2026-23455 CVSS 9.1 | In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_conntrack_h323: check for zero length in DecodeQ931() In DecodeQ931(), the … |
| CVE-2026-23450 | CVE-2026-23450 CVSS 9.8 | In the Linux kernel, the following vulnerability has been resolved: net/smc: fix NULL dereference and UAF in smc_tcp_syn_recv_sock() Syzkaller reported a pan… |
| CVE-2026-2333 | CVE-2026-2333 CVSS 9.8 | Improper Neutralization of Special Elements used in a Command ('Command Injection') in Owl opds 2.2.0.4 allows Command Injection via a crafted network request. |
| CVE-2026-2332 | CVE-2026-2332 CVSS 9.1 | In Eclipse Jetty, the HTTP/1.1 parser is vulnerable to request smuggling when chunk extensions are used, similar to the "funky chunks" techniques outlined here… |
| CVE-2026-2331 | CVE-2026-2331 CVSS 9.8 | An attacker may perform unauthenticated read and write operations on sensitive filesystem areas via the AppEngine Fileaccess over HTTP due to improper access r… |
| CVE-2026-2330 | CVE-2026-2330 CVSS 9.4 | An attacker may access restricted filesystem areas on the device via the CROWN REST interface due to incomplete whitelist enforcement. Certain directories inte… |
| CVE-2026-2329 | CVE-2026-2329 CVSS 9.8 | An unauthenticated stack-based buffer overflow vulnerability exists in the HTTP API endpoint /cgi-bin/api.values.get. A remote attacker can leverage this vulne… |
| CVE-2026-23240 | CVE-2026-23240 CVSS 9.8 | In the Linux kernel, the following vulnerability has been resolved: tls: Fix race condition in tls_sw_cancel_work_tx() This issue was discovered during a cod… |
| CVE-2026-23112 | CVE-2026-23112 CVSS 9.8linux | In the Linux kernel, the following vulnerability has been resolved: nvmet-tcp: add bounds checks in nvmet_tcp_build_pdu_iovec nvmet_tcp_build_pdu_iovec() cou… |
| CVE-2026-2311 | CVE-2026-2311 CVSS 9.8 | IBM i 7.6, 7.5, 7.4, 7.3, and 7.2 s vulnerable to privilege escalation caused by an invalid IBM i Web Administration GUI authorization check. A malicious acto… |
| CVE-2026-2298 | CVE-2026-2298 CVSS 9.4 | Improper Neutralization of Argument Delimiters in a Command ('Argument Injection') vulnerability in Salesforce Marketing Cloud Engagement allows Web Services P… |
| CVE-2026-2293 | CVE-2026-2293 CVSS 9.8 | A NestJS application using @nestjs/platform-fastify can allow bypass of authentication/authorization middleware when Fastify path-normalization options are ena… |
| CVE-2026-22924 | CVE-2026-22924 CVSS 9.1 | A vulnerability has been identified in SIMATIC CN 4100 (All versions < V5.0). The affected application does not properly restrict unauthenticated connections a… |
| CVE-2026-22910 | CVE-2026-22910 CVSS 9.1 | The device is deployed with weak and publicly known default passwords for certain hidden user levels, increasing the risk of unauthorized access. This represen… |
| CVE-2026-22909 | CVE-2026-22909 CVSS 9.1 | Certain system functions may be accessed without proper authorization, allowing attackers to start, stop, or delete installed applications, potentially disrupt… |
| CVE-2026-22908 | CVE-2026-22908 CVSS 9.1 | Uploading unvalidated container images may allow remote attackers to gain full access to the system, potentially compromising its integrity and confidentiality. |
| CVE-2026-22907 | CVE-2026-22907 CVSS 9.1 | An attacker may gain unauthorized access to the host filesystem, potentially allowing them to read and modify system data. |
| CVE-2026-22906 | CVE-2026-22906 CVSS 9.8 | User credentials are stored using AES‑ECB encryption with a hardcoded key. An unauthenticated remote attacker obtaining the configuration file can decrypt and … |
| CVE-2026-22904 | CVE-2026-22904 CVSS 9.8 | Improper length handling when parsing multiple cookie fields (including TRACKID) allows an unauthenticated remote attacker to send oversized cookie values and … |
| CVE-2026-22903 | CVE-2026-22903 CVSS 9.8 | An unauthenticated remote attacker can send a crafted HTTP request containing an overly long SESSIONID cookie. This can trigger a stack buffer overflow in the … |
| CVE-2026-22901 | CVE-2026-22901 CVSS 9.8 | A command injection vulnerability has been reported to affect QuNetSwitch. If a remote attacker gains a user account, they can then exploit the vulnerability t… |
| CVE-2026-22900 | CVE-2026-22900 CVSS 9.8 | A use of hard-coded credentials vulnerability has been reported to affect QuNetSwitch. The remote attackers can then exploit the vulnerability to gain unauthor… |
| CVE-2026-22898 | CVE-2026-22898 CVSS 9.8 | A missing authentication for critical function vulnerability has been reported to affect QVR Pro. The remote attackers can then exploit the vulnerability to ga… |
| CVE-2026-22897 | CVE-2026-22897 CVSS 9.8 | A command injection vulnerability has been reported to affect QuNetSwitch. The remote attackers can then exploit the vulnerability to execute arbitrary command… |
| CVE-2026-22891 | CVE-2026-22891 CVSS 9.8 | A heap-based buffer overflow vulnerability exists in the Intan CLP parsing functionality of The Biosig Project libbiosig 3.9.2 and Master Branch (db9a9a63). A … |
| CVE-2026-22886 | CVE-2026-22886 CVSS 9.8 | OpenMQ exposes a TCP-based management service (imqbrokerd) that by default requires authentication. However, the product ships with a default administrative ac… |
| CVE-2026-22877 | CVE-2026-22877 CVSS 9.1 | An arbitrary file-read vulnerability exists in XWEB Pro version 1.12.1 and prior, enabling unauthenticated attackers to read arbitrary files on the system, a… |
| CVE-2026-22871 | CVE-2026-22871 CVSS 9.8 | GuardDog is a CLI tool to identify malicious PyPI packages. Prior to 2.7.1, there is a path traversal vulnerability exists in GuardDog's safe_extract() functio… |
| CVE-2026-2287 | CVE-2026-2287 CVSS 9.8 | CrewAI does not properly check that Docker is still running during runtime, and will fall back to a sandbox setting that allows for RCE exploitation. |
| CVE-2026-22869 | CVE-2026-22869 CVSS 9.8 | Eigent is a multi-agent Workforce. A critical security vulnerability in the CI workflow (.github/workflows/ci.yml) allows arbitrary code execution from fork pu… |
| CVE-2026-22864 | CVE-2026-22864 CVSS 9.8 | Deno is a JavaScript, TypeScript, and WebAssembly runtime. Before 2.5.6, a prior patch aimed to block spawning Windows batch/shell files by returning an error … |
| CVE-2026-2286 | CVE-2026-2286 CVSS 9.8 | CrewAI contains a server-side request forgery vulnerability that enables content acquisition from internal and cloud services, facilitated by the RAG search to… |
| CVE-2026-22859 | CVE-2026-22859 CVSS 9.1 | FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, the URBDRC client does not perform bounds checking on server‑supplied MSUSB_I… |
| CVE-2026-22858 | CVE-2026-22858 CVSS 9.1 | FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, global-buffer-overflow was observed in FreeRDP's Base64 decoding path. The ro… |
| CVE-2026-22857 | CVE-2026-22857 CVSS 9.8 | FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, a heap use-after-free occurs in irp_thread_func because the IRP is freed by i… |
| CVE-2026-22855 | CVE-2026-22855 CVSS 9.1 | FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, a heap out-of-bounds read occurs in the smartcard SetAttrib path when cbAttrL… |
| CVE-2026-22854 | CVE-2026-22854 CVSS 9.8 | FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, a heap-buffer-overflow occurs in drive read when a server-controlled read len… |
| CVE-2026-22853 | CVE-2026-22853 CVSS 9.8 | FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, RDPEAR’s NDR array reader does not perform bounds checking on the on‑wire ele… |
| CVE-2026-22852 | CVE-2026-22852 CVSS 9.8 | FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, a malicious RDP server can trigger a heap-buffer-overflow write in the FreeRD… |
| CVE-2026-22844 | CVE-2026-22844 CVSS 9.9 | A Command Injection vulnerability in Zoom Node Multimedia Routers (MMRs) before version 5.2.1716.0 may allow a meeting participant to conduct remote code execu… |
| CVE-2026-22807 | CVE-2026-22807 CVSS 9.8 | vLLM is an inference and serving engine for large language models (LLMs). Starting in version 0.10.1 and prior to version 0.14.0, vLLM loads Hugging Face `auto… |
| CVE-2026-22806 | CVE-2026-22806 CVSS 9.1 | vCluster Platform provides a Kubernetes platform for managing virtual clusters, multi-tenancy, and cluster sharing. Prior to versions 4.6.0, 4.5.4, 4.4.2, and … |
| CVE-2026-22797 | CVE-2026-22797 CVSS 9.9 | An issue was discovered in OpenStack keystonemiddleware 10.5 through 10.7 before 10.7.2, 10.8 and 10.9 before 10.9.1, and 10.10 through 10.12 before 10.12.1. T… |
| CVE-2026-22793 | CVE-2026-22793 CVSS 9.6 | 5ire is a cross-platform desktop artificial intelligence assistant and model context protocol client. Prior to version 0.15.3, an unsafe option parsing vulnera… |
| CVE-2026-22792 | CVE-2026-22792 CVSS 9.6 | 5ire is a cross-platform desktop artificial intelligence assistant and model context protocol client. Prior to version 0.15.3, an unsafe HTML rendering permits… |
| CVE-2026-22785 | CVE-2026-22785 CVSS 9.8 | orval generates type-safe JS clients (TypeScript) from any valid OpenAPI v3 or Swagger v2 specification. Prior to 7.18.0, the MCP server generation logic relie… |