Critical vulnerabilities, curated daily for security professionals
đ¯ SSCV Profile
See how vulnerabilities affect your specific environment
CRS uses the System Security Context Vector (SSCV) Framework v1.0 to adjust CVSS scores based on your system's exposure level, network position, and business criticality. Learn more about SSCV Framework
Risk scores will be adjusted based on your selected environment
đ
Today's Security Brief
Saturday's security landscape is dominated by 16 actively exploited CISA KEV vulnerabilities spanning Cisco Unified Communications, Zimbra, VMware vCenter, and Microsoft Office. A critical wave of SandboxJS escape vulnerabilities threatens JavaScript sandboxing, while Fortinet FortiClientEMS faces an unauthenticated SQL injection flaw. Supply chain risks emerge with malicious code embedded in the popular eslint-config-prettier package and command injection in React Native CLI. With only 27% of patches available, most organizations remain exposed.
16 CISA KEV actively exploited vulnerabilities including Cisco, Zimbra, VMware vCenter, and Microsoft Office
4 SandboxJS sandbox escape CVEs enable attackers to break out of JavaScript sandboxes via multiple techniques
Supply chain attacks: malicious code in eslint-config-prettier and command injection in React Native CLI
SmarterTools SmarterMail targeted by 3 separate KEV vulnerabilities including auth bypass
Only 27% of patches currently available â most vulnerabilities remain unpatched
Immediate action: Immediately patch Cisco Unified Communications, Zimbra ZCS, and VMware vCenter Server. Audit any projects using eslint-config-prettier and React Native CLI for supply chain compromise. Review SmarterMail deployments for authentication bypass. Apply Fortinet FortiClientEMS updates as soon as patches are released.
đĄ Tip: Swipe CVE cards left to â star, right to â remove
Section Navigation
â ī¸
CISA Known Exploited Vulnerabilities
â ī¸ CISA KEVURGENT
CVE-2026-20045
9.5đ
CiscoUnified Communications Manager
â° Federal Deadline:February 10, 2026(4 days remaining)
Cisco Unified Communications Products Code Injection Vulnerability - Active in CISA KEV catalog.
CVSS Base9.5
â
CRSSelect profile
â ī¸ CISA KEVURGENT
CVE-2025-68645
9.5đ
Synacor Zimbra Collaboration Suite (ZCS)
â° Federal Deadline:February 11, 2026(5 days remaining)
Synacor Zimbra Collaboration Suite (ZCS) PHP Remote File Inclusion Vulnerability - Active in CISA KEV catalog.
CVSS Base9.5
â
CRSSelect profile
â ī¸ CISA KEVURGENT
CVE-2025-34026
9.5
VersaConcerto
â° Federal Deadline:February 11, 2026(5 days remaining)
Versa Concerto Improper Authentication Vulnerability - Active in CISA KEV catalog.
CVSS Base9.5
â
CRSSelect profile
â ī¸ CISA KEVURGENT
CVE-2025-31125
9.5
ViteVitejs
â° Federal Deadline:February 11, 2026(5 days remaining)
Vite Vitejs Improper Access Control Vulnerability - Active in CISA KEV catalog.
CVSS Base9.5
â
CRSSelect profile
â ī¸ CISA KEVURGENT
CVE-2025-54313
9.5
Prettiereslint-config-prettier
â° Federal Deadline:February 11, 2026(5 days remaining)
Prettier eslint-config-prettier Embedded Malicious Code Vulnerability - Active in CISA KEV catalog.
CVSS Base9.5
â
CRSSelect profile
â ī¸ CISA KEVURGENT
CVE-2024-37079
9.5đ Late Disclosure
BroadcomVMware vCenter Server
â° Federal Deadline:February 12, 2026(6 days remaining)
Broadcom VMware vCenter Server Out-of-bounds Write Vulnerability - Active in CISA KEV catalog.
CVSS Base9.5
â
CRSSelect profile
â ī¸ CISA KEV
CVE-2018-14634
9.5đ Late Disclosure
LinuxKernal
â° Federal Deadline:February 15, 2026(9 days remaining)
Linux Kernel Integer Overflow Vulnerability - Active in CISA KEV catalog.
CVSS Base9.5
â
CRSSelect profile
â ī¸ CISA KEV
CVE-2025-52691
9.5đ
SmarterToolsSmarterMail
â° Federal Deadline:February 15, 2026(9 days remaining)
SmarterTools SmarterMail Unrestricted Upload of File with Dangerous Type Vulnerability - Active in CISA KEV catalog.
CVSS Base9.5
â
CRSSelect profile
â ī¸ CISA KEV
CVE-2026-23760
9.5
SmarterToolsSmarterMail
â° Federal Deadline:February 15, 2026(9 days remaining)
SmarterTools SmarterMail Authentication Bypass Using an Alternate Path or Channel Vulnerability - Active in CISA KEV catalog.
CVSS Base9.5
â
CRSSelect profile
â ī¸ CISA KEV
CVE-2026-24061
9.5đ
GNUInetUtils
â° Federal Deadline:February 15, 2026(9 days remaining)
GNU InetUtils Argument Injection Vulnerability - Active in CISA KEV catalog.
CVSS Base9.5
â
CRSSelect profile
â ī¸ CISA KEV
CVE-2026-21509
9.5đ
MicrosoftOffice
â° Federal Deadline:February 15, 2026(9 days remaining)
Microsoft Office Security Feature Bypass Vulnerability - Active in CISA KEV catalog.
CVSS Base9.5
â
CRSSelect profile
â ī¸ CISA KEV
CVE-2021-39935
9.5đ Late Disclosure
GitLabCommunity and Enterprise Editions
â° Federal Deadline:February 23, 2026(17 days remaining)
GitLab Community and Enterprise Editions Server-Side Request Forgery (SSRF) Vulnerability - Active in CISA KEV catalog.
CVSS Base9.5
â
CRSSelect profile
â ī¸ CISA KEV
CVE-2025-64328
9.5
SangomaFreePBX
â° Federal Deadline:February 23, 2026(17 days remaining)
Sangoma FreePBX OS Command Injection Vulnerability - Active in CISA KEV catalog.
CVSS Base9.5
â
CRSSelect profile
â ī¸ CISA KEV
CVE-2019-19006
9.5đ Late Disclosure
SangomaFreePBX
â° Federal Deadline:February 23, 2026(17 days remaining)
Sangoma FreePBX Improper Authentication Vulnerability - Active in CISA KEV catalog.
CVSS Base9.5
â
CRSSelect profile
â ī¸ CISA KEV
CVE-2025-11953
9.5đ
React Native CommunityCLI
â° Federal Deadline:February 25, 2026(19 days remaining)
React Native Community CLI OS Command Injection Vulnerability - Active in CISA KEV catalog.
CVSS Base9.5
â
CRSSelect profile
â ī¸ CISA KEV
CVE-2026-24423
9.5
SmarterToolsSmarterMail
â° Federal Deadline:February 25, 2026(19 days remaining)
SmarterTools SmarterMail Missing Authentication for Critical Function Vulnerability - Active in CISA KEV catalog.
CVSS Base9.5
â
CRSSelect profile
đ¨
Critical Vulnerabilities
CVE-2026-25592
9.9đ
MicrosoftSemantic Kernel .NET SDK
Microsoft Semantic Kernel .NET SDK contains an arbitrary file write flaw in the SessionsPythonPlugin. Attackers can exploit DownloadFileAsync or UploadFileAsync to write files to restricted paths.
CVSS Base9.9
â
CRSSelect profile
CVE-2026-1499
9.8đ
WordPressis vulnerable
The WP Duplicate plugin for WordPress allows authenticated subscribers to trigger a chain of vulnerabilities leading to unauthenticated remote code execution via arbitrary file upload.
CVSS Base9.8
â
CRSSelect profile
CVE-2026-21643
9.8đ
FortinetFortiClientEMS
An unauthenticated SQL injection vulnerability in Fortinet FortiClientEMS 7.4.4 allows for unauthorized code or command execution via crafted HTTP requests.
CVSS Base9.8
â
CRSSelect profile
CVE-2026-25520
10đ
SandboxJSSandboxJS
SandboxJS is vulnerable to a sandbox escape via unwrapped function return values. Attackers can access the host's Function constructor to execute arbitrary code outside the restricted environment.
CVSS Base10
â
CRSSelect profile
CVE-2026-25586
10đ
SandboxJSSandboxJS
SandboxJS allows sandbox escape via shadowing of the hasOwnProperty method. This disables prototype whitelist enforcement, enabling host Object.prototype pollution and persistent cross-sandbox impact.
CVSS Base10
â
CRSSelect profile
CVE-2026-25587
10đ
SandboxJSSandboxJS
A flaw in SandboxJS allows attackers to escape the sandbox by overwriting Map.prototype.has. Since Map is included in SAFE_PROTOTYPES, its prototype is accessible for malicious modification.
CVSS Base10
â
CRSSelect profile
CVE-2026-25641
10đ
SandboxJSSandboxJS
SandboxJS is vulnerable to an escape due to a key validation mismatch. Attackers can use malicious objects that coerce to different strings during sanitation versus actual property access.
CVSS Base10
â
CRSSelect profile
CVE-2020-37095
9.8đđ Late Disclosure
Cyberoam AuthenticationAuthentication Client
Buffer overflow in Cyberoam Authentication Client 2.1.2.7 allows remote attackers to execute arbitrary code by overwriting SEH memory via a crafted server address.
CVSS Base9.8
â
CRSSelect profile
CVE-2026-25632
10đ
EPyT-FlowEPyT-Flow
EPyT-Flowâs REST API custom deserializer allows dynamic instantiation of attacker-specified classes. This leads to OS command execution via dangerous classes like subprocess.Popen.
CVSS Base10
â
CRSSelect profile
CVE-2026-1709
9.4đ
KeylimeKeylime Registrar
The Keylime registrar fails to enforce client-side TLS authentication. This allows unauthenticated attackers to perform administrative operations, including deleting agents and retrieving TPM data.
CVSS Base9.4
â
CRSSelect profile
CVE-2026-2017
9.8đ
IP-COMW30AP
A stack-based buffer overflow exists in the IP-COM W30AP access point via the R7WebsSecurityHandler function. Remote attackers can exploit the "data" argument in a POST request to execute code.
CVSS Base9.8
â
CRSSelect profile
CVE-2026-25544
9.8đ
Payload CMSPayload
Payload CMS is vulnerable to blind SQL injection in JSON and richText field queries. Unauthenticated attackers can extract sensitive data and achieve full account takeover by embedding unescaped input into SQL.
CVSS Base9.8
â
CRSSelect profile
CVE-2020-37159
9.8đđ Late Disclosure
Parallaxis CuckooCuckoo Clock
Parallaxis Cuckoo Clock 5.0 is vulnerable to a buffer overflow in alarm scheduling, enabling shellcode execution via EIP and EBP register overwrites.
CVSS Base9.8
â
CRSSelect profile
CVE-2020-37161
9.8đđ Late Disclosure
Wedding SlideshowWedding Slideshow Studio
Wedding Slideshow Studio 1.36 contains a buffer overflow in the registration name field, allowing attackers to execute arbitrary system commands via a malicious payload.
CVSS Base9.8
â
CRSSelect profile
CVE-2026-25803
9.8đ
3DP-MANAGER3DP-MANAGER
3DP-MANAGER automatically creates an administrative account with default credentials (admin/admin) upon initialization. Attackers can use these credentials to gain full control over VPN and system settings.
CVSS Base9.8
â
CRSSelect profile
CVE-2026-25643
9.1đ
FrigateFrigate NVR
Critical RCE in Frigate NVR via unsanitized input in the go2rtc video stream configuration allows command injection via the exec: directive.
CVSS Base9.1
â
CRSSelect profile
CVE-2020-37162
9.8đđ Late Disclosure
the registrationWedding Slideshow Studio
A stack-based buffer overflow in Wedding Slideshow Studio 1.36 allows attackers to execute arbitrary code by supplying a malicious 1608-byte registration key.
CVSS Base9.8
â
CRSSelect profile
â ī¸
High Priority Updates
CVE-2026-2103
7.1
InforSyteLine ERP
Infor SyteLine ERP uses hard-coded static cryptographic keys to encrypt stored credentials, including user passwords, database connection strings, and API keys
CVSS Base7.1
â
CRSSelect profile
CVE-2026-24302
8.6đ
AzureArc Elevation
Azure Arc Elevation of Privilege Vulnerability allows an authenticated attacker to gain higher administrative permissions than intended within the Azure environment.
CVSS Base8.6
â
CRSSelect profile
CVE-2026-25628
8.5
searchengine and
Qdrant is a vector similarity search engine and vector database
CVSS Base8.5
â
CRSSelect profile
CVE-2020-37151
8.2đ Late Disclosure
HPpage through
phpMyChat Plus 1
CVSS Base8.2
â
CRSSelect profile
CVE-2026-21532
8.2đ
AzureFunction Information
Azure Functions Information Disclosure Vulnerability allows an attacker to gain unauthorized access to sensitive information, potentially leading to further compromise of the cloud environment.
CVSS Base8.2
â
CRSSelect profile
CVE-2026-2058
7.3
HPof the
A flaw has been found in mathurvishal CloudClassroom-PHP-Project up to 5dadec098bfbbf3300d60c3494db3fb95b66e7be
CVSS Base7.3
â
CRSSelect profile
CVE-2025-15566
8.8
Nginxwhere the
A security issue was discovered in ingress-nginx where the `nginx
CVSS Base8.8
â
CRSSelect profile
CVE-2020-37143
7.5đ Late Disclosure
forMultiple Products
ProficySCADA for iOS 5
CVSS Base7.5
â
CRSSelect profile
CVE-2020-37107
7.5đ Late Disclosure
FTPMultiple Products
Core FTP LE 2
CVSS Base7.5
â
CRSSelect profile
CVE-2020-37155
7.5đ Late Disclosure
FTPMultiple Products
Core FTP Lite 1
CVSS Base7.5
â
CRSSelect profile
CVE-2020-37141
8.2đ Late Disclosure
HPscript through
AMSS++ version 4
CVSS Base8.2
â
CRSSelect profile
CVE-2026-1294
7.2
WordPressis vulnerable
The All In One Image Viewer Block plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 1
CVSS Base7.2
â
CRSSelect profile
CVE-2026-23572
7.2
HostMultiple Products
Improper access control inâ¯theâ¯TeamViewerâ¯Full and Host clientsâ¯(Windows,â¯macOS, Linux)â¯priorâ¯versionâ¯15
CVSS Base7.2
â
CRSSelect profile
CVE-2020-37147
7.1đ Late Disclosure
HPscript to
ATutor 2
CVSS Base7.1
â
CRSSelect profile
CVE-2025-13523
7.7
MattermostMultiple Products
Mattermost Confluence plugin version <1
CVSS Base7.7
â
CRSSelect profile
CVE-2026-2011
7.3
HPMultiple Products
A vulnerability was found in itsourcecode Student Management System 1
CVSS Base7.3
â
CRSSelect profile
CVE-2026-2012
7.3
HPMultiple Products
A vulnerability was determined in itsourcecode Student Management System 1
CVSS Base7.3
â
CRSSelect profile
CVE-2026-2013
7.3
HPMultiple Products
A vulnerability was identified in itsourcecode Student Management System 1
CVSS Base7.3
â
CRSSelect profile
CVE-2026-2014
7.3
HPMultiple Products
A security flaw has been discovered in itsourcecode Student Management System 1
CVSS Base7.3
â
CRSSelect profile
CVE-2026-2018
7.3
HPMultiple Products
A flaw has been found in itsourcecode School Management System 1
CVSS Base7.3
â
CRSSelect profile
CVE-2026-2057
7.3
HPMultiple Products
A vulnerability was detected in SourceCodester Medical Center Portal Management System 1
CVSS Base7.3
â
CRSSelect profile
CVE-2026-2059
7.3
HPMultiple Products
A vulnerability has been found in SourceCodester Medical Center Portal Management System 1
CVSS Base7.3
â
CRSSelect profile
CVE-2026-2060
7.3
HPMultiple Products
A vulnerability was found in code-projects Simple Blood Donor Management System 1
CVSS Base7.3
â
CRSSelect profile
CVE-2026-2073
7.3
HPMultiple Products
A vulnerability was determined in itsourcecode School Management System 1
CVSS Base7.3
â
CRSSelect profile
CVE-2026-25580
8.6
PydanticMultiple Products
Pydantic AI is a Python agent framework for building applications and workflows with Generative AI
CVSS Base8.6
â
CRSSelect profile
CVE-2025-13379
8.6
IBMAspera Console
IBM Aspera Console 3
CVSS Base8.6
â
CRSSelect profile
CVE-2026-25732
7.5
UnknownMultiple Products
NiceGUI is a Python-based UI framework
CVSS Base7.5
â
CRSSelect profile
CVE-2026-25640
7.1
PydanticMultiple Products
Pydantic AI is a Python agent framework for building applications and workflows with Generative AI
CVSS Base7.1
â
CRSSelect profile
CVE-2019-25302
7.8đ Late Disclosure
LaunchLaunch Manager
Acer Launch Manager 6
CVSS Base7.8
â
CRSSelect profile
CVE-2019-25305
7.8đ Late Disclosure
jswpbapiMultiple Products
JumpStart 0
CVSS Base7.8
â
CRSSelect profile
CVE-2019-25299
7.1đ Late Disclosure
RimbaLinuxAhadPOS
RimbaLinux AhadPOS 1
CVSS Base7.1
â
CRSSelect profile
CVE-2025-68722
8.8
MailMultiple Products
Axigen Mail Server before 10
CVSS Base8.8
â
CRSSelect profile
CVE-2020-37117
8.8đ Late Disclosure
adminMultiple Products
jizhiCMS 1
CVSS Base8.8
â
CRSSelect profile
CVE-2025-69906
8.8
FilesMultiple Products
Monstra CMS v3
CVSS Base8.8
â
CRSSelect profile
CVE-2025-15330
8.8
DeployMultiple Products
Tanium addressed an improper input validation vulnerability in Deploy
CVSS Base8.8
â
CRSSelect profile
CVE-2026-2066
8.8
UnknownMultiple Products
A weakness has been identified in UTT čŋå 520W 1
CVSS Base8.8
â
CRSSelect profile
CVE-2026-2067
8.8
UnknownMultiple Products
A security vulnerability has been detected in UTT čŋå 520W 1
CVSS Base8.8
â
CRSSelect profile
CVE-2026-2068
8.8
UnknownMultiple Products
A vulnerability was detected in UTT čŋå 520W 1
CVSS Base8.8
â
CRSSelect profile
CVE-2026-2070
8.8
UnknownMultiple Products
A vulnerability has been found in UTT čŋå 520W 1
CVSS Base8.8
â
CRSSelect profile
CVE-2026-2071
8.8
UnknownMultiple Products
A vulnerability was found in UTT čŋå 520W 1
CVSS Base8.8
â
CRSSelect profile
CVE-2026-24925
7.3
imageMultiple Products
Heap-based buffer overflow vulnerability in the image module
CVSS Base7.3
â
CRSSelect profile
CVE-2026-25635
8.6
bookMultiple Products
calibre is an e-book manager
CVSS Base8.6
â
CRSSelect profile
CVE-2020-37139
8.4đ Late Disclosure
FTPMultiple Products
Odin Secure FTP Expert 7
CVSS Base8.4
â
CRSSelect profile
CVE-2020-37142
8.4đ Late Disclosure
InventoryMultiple Products
10-Strike Network Inventory Explorer 8
CVSS Base8.4
â
CRSSelect profile
CVE-2026-24926
8.4
cameraMultiple Products
Out-of-bounds write vulnerability in the camera module
CVSS Base8.4
â
CRSSelect profile
CVE-2026-24930
8.4
graphicsMultiple Products
UAF concurrency vulnerability in the graphics module
CVSS Base8.4
â
CRSSelect profile
CVE-2026-25593
8.4
UnknownMultiple Products
OpenClaw is a personal AI assistant
CVSS Base8.4
â
CRSSelect profile
CVE-2026-23989
8.2
ArchMultiple Products
REVA is an interoperability platform
CVSS Base8.2
â
CRSSelect profile
CVE-2026-25636
8.2
bookMultiple Products
calibre is an e-book manager
CVSS Base8.2
â
CRSSelect profile
CVE-2020-37163
8.2đ Late Disclosure
InforMultiple Products
QuickDate 1
CVSS Base8.2
â
CRSSelect profile
CVE-2020-37149
8.1đ Late Disclosure
EdimaxMultiple Products
Edimax EW-7438RPn-v3 Mini 1
CVSS Base8.1
â
CRSSelect profile
CVE-2025-15311
7.8
TaniumMultiple Products
Tanium addressed an unauthorized code execution vulnerability in Tanium Appliance
CVSS Base7.8
â
CRSSelect profile
CVE-2019-25266
7.8đ Late Disclosure
FrameworkMultiple Products
Wondershare Application Framework Service 2
CVSS Base7.8
â
CRSSelect profile
CVE-2019-25292
7.8đ Late Disclosure
MonitorMultiple Products
Alps HID Monitor Service 8
CVSS Base7.8
â
CRSSelect profile
CVE-2019-25293
7.8đ Late Disclosure
AppMultiple Products
BlueStacks App Player 2
CVSS Base7.8
â
CRSSelect profile
CVE-2019-25304
7.8đ Late Disclosure
SecurOSMultiple Products
SecurOS Enterprise 10
CVSS Base7.8
â
CRSSelect profile
CVE-2026-25634
7.8
UnknownMultiple Products
iccDEV provides a set of libraries and tools that allow for the interaction, manipulation, and application of ICC color management profiles
CVSS Base7.8
â
CRSSelect profile
CVE-2026-25731
7.8
bookMultiple Products
calibre is an e-book manager
CVSS Base7.8
â
CRSSelect profile
CVE-2025-70963
7.6
GophishMultiple Products
Gophish <=0
CVSS Base7.6
â
CRSSelect profile
CVE-2020-37130
7.5đ Late Disclosure
registrationMultiple Products
Nsauditor 3
CVSS Base7.5
â
CRSSelect profile
CVE-2020-37133
7.5đ Late Disclosure
UltraVNCMultiple Products
UltraVNC Launcher 1
CVSS Base7.5
â
CRSSelect profile
CVE-2020-37134
7.5đ Late Disclosure
UltraVNCMultiple Products
UltraVNC Viewer 1
CVSS Base7.5
â
CRSSelect profile
CVE-2020-37136
7.5đ Late Disclosure
ZOCMultiple Products
ZOC Terminal 7
CVSS Base7.5
â
CRSSelect profile
CVE-2020-37150
7.5đ Late Disclosure
InforMultiple Products
Edimax EW-7438RPn-v3 Mini 1
CVSS Base7.5
â
CRSSelect profile
CVE-2025-69619
7.5
UnknownMultiple Products
A path traversal in My Text Editor v1
CVSS Base7.5
â
CRSSelect profile
CVE-2026-25644
7.5
UnknownMultiple Products
DataHub is an open-source metadata platform
CVSS Base7.5
â
CRSSelect profile
CVE-2026-25762
7.5
UnknownMultiple Products
AdonisJS is a TypeScript-first web framework
CVSS Base7.5
â
CRSSelect profile
CVE-2020-37109
7.5đ Late Disclosure
aScMultiple Products
aSc TimeTables 2020
CVSS Base7.5
â
CRSSelect profile
CVE-2020-37122
7.5đ Late Disclosure
PasswordMultiple Products
SpotFTP-FTP Password Recover 2
CVSS Base7.5
â
CRSSelect profile
CVE-2020-37135
7.5đ Late Disclosure
UnknownMultiple Products
AMSS++ 4
CVSS Base7.5
â
CRSSelect profile
CVE-2020-37146
7.5đ Late Disclosure
UnknownMultiple Products
ACE Security WiP-90113 HD Camera contains a configuration disclosure vulnerability that allows unauthenticated attackers to retrieve sensitive configuration files
CVSS Base7.5
â
CRSSelect profile
CVE-2020-37157
7.5đ Late Disclosure
UnknownMultiple Products
DBPower C300 HD Camera contains a configuration disclosure vulnerability that allows unauthenticated attackers to retrieve sensitive credentials through an unprotected configuration backup endpoint
CVSS Base7.5
â
CRSSelect profile
CVE-2026-1707
7.4
pgAdminMultiple Products
pgAdmin versions 9
CVSS Base7.4
â
CRSSelect profile
CVE-2025-68621
7.4
ArchMultiple Products
Trilium Notes is an open-source, cross-platform hierarchical note taking application with focus on building large personal knowledge bases