Critical vulnerabilities, curated daily for security professionals
đ¯ SSCV Profile
See how vulnerabilities affect your specific environment
CRS uses the System Security Context Vector (SSCV) Framework v1.0 to adjust CVSS scores based on your system's exposure level, network position, and business criticality. Learn more about SSCV Framework
Risk scores will be adjusted based on your selected environment
đ
Today's Security Brief
Thursday's vulnerability disclosures include 24 critical and 100 high-priority CVEs across major enterprise platforms, with two maximum-severity (CVSS 10.0) flaws in Microsoft Azure Entra (CVE-2026-31957) and Apple App Store (CVE-2026-31852) requiring immediate attention. Critical CVE volume decreased slightly from 25 to 24 (-4%), while high-priority disclosures held steady at 100. Additional critical vulnerabilities affect Zoom Workplace (CVE-2026-30903, CVSS 9.6), Kubernetes Argo Workflows (CVE-2026-28229, CVSS 9.8), and HP products (CVE-2026-27591, CVSS 9.9). Attack patterns span remote code execution, authentication bypass, and privilege escalation across cloud infrastructure, mobile platforms, and enterprise management tools. No patches are currently available for these disclosures; organizations should implement compensating controls and monitor vendor advisories closely.
Two CVSS 10.0 vulnerabilities disclosed in Microsoft Azure Entra (CVE-2026-31957) and Apple App Store (CVE-2026-31852)
24 critical CVEs disclosed, down slightly from 25 the prior day (-4%)
100 high-priority CVEs disclosed, unchanged from the prior day
RCE and authentication bypass patterns affect Zoom Workplace, Kubernetes Argo Workflows, HP products, and WordPress plugins
0% patch availability across all disclosed vulnerabilities; compensating controls recommended
13 actively exploited vulnerabilities including Roundcube Webmail, Ivanti EPM, VMware Aria Operations, and Qualcomm chipsets
Immediate action: Prioritize assessment of Microsoft Azure Entra, Apple App Store, Zoom Workplace, and Kubernetes Argo Workflows environments for exposure to the maximum-severity flaws disclosed this cycle. With no patches currently available, apply network segmentation, restrict access to affected services, and enable enhanced logging while monitoring vendor channels for remediation guidance.
đĄ Tip: Swipe CVE cards left to â star, right to â remove
Section Navigation
â ī¸
CISA Known Exploited Vulnerabilities
â ī¸ CISA KEVURGENT
CVE-2025-49113
9.5
RoundcubeWebmail
â° Federal Deadline:March 12, 2026(1 days remaining)
RoundCube Webmail Deserialization of Untrusted Data Vulnerability - Active in CISA KEV catalog.
CVSS Base9.5
â
CRSSelect profile
â ī¸ CISA KEVURGENT
CVE-2025-68461
9.5
RoundcubeWebmail
â° Federal Deadline:March 12, 2026(1 days remaining)
RoundCube Webmail Cross-site Scripting Vulnerability - Active in CISA KEV catalog.
CVSS Base9.5
â
CRSSelect profile
â ī¸ CISA KEVURGENT
CVE-2026-25108
9.5đ
Soliton Systems K.KFileZen
â° Federal Deadline:March 16, 2026(5 days remaining)
FileZen is affected by a high-severity OS command injection vulnerability that allows a threat actor to execute arbitrary commands on the underlying operating system.
CVSS Base9.5
â
CRSSelect profile
â ī¸ CISA KEV
CVE-2021-22054
9.5đ Late Disclosure
OmnissaWorkspace One UEM
â° Federal Deadline:March 22, 2026(11 days remaining)
Omnissa Workspace ONE Server-Side Request Forgery - Active in CISA KEV catalog.
CVSS Base9.5
â
CRSSelect profile
â ī¸ CISA KEV
CVE-2026-1603
9.5
Ivanti Endpoint Manager (EPM)
â° Federal Deadline:March 22, 2026(11 days remaining)
Ivanti Endpoint Manager (EPM) Authentication Bypass Vulnerability - Active in CISA KEV catalog.
CVSS Base9.5
â
CRSSelect profile
â ī¸ CISA KEV
CVE-2026-22719
9.5đ
BroadcomVMware Aria Operations
â° Federal Deadline:March 23, 2026(12 days remaining)
VMware Aria Operations contains a command injection vulnerability that could allow an attacker to execute arbitrary commands on the affected system.
CVSS Base9.5
â
CRSSelect profile
â ī¸ CISA KEV
CVE-2026-21385
9.5đ
QualcommMultiple Chipsets
â° Federal Deadline:March 23, 2026(12 days remaining)
A memory corruption vulnerability exists in memory allocation processes when handling specific alignments, potentially leading to arbitrary code execution or system instability.
CVSS Base9.5
â
CRSSelect profile
â ī¸ CISA KEV
CVE-2025-68613
9.5đ
n8nn8n
â° Federal Deadline:March 24, 2026(13 days remaining)
n8n Improper Control of Dynamically-Managed Code Resources Vulnerability - Active in CISA KEV catalog.
CVSS Base9.5
â
CRSSelect profile
â ī¸ CISA KEV
CVE-2017-7921
9.5đ Late Disclosure
HikvisionMultiple Products
â° Federal Deadline:March 25, 2026(14 days remaining)
Hikvision Multiple Products Improper Authentication Vulnerability - Active in CISA KEV catalog.
CVSS Base9.5
â
CRSSelect profile
â ī¸ CISA KEV
CVE-2021-22681
9.5đ Late Disclosure
RockwellMultiple Products
â° Federal Deadline:March 25, 2026(14 days remaining)
Rockwell Multiple Products Insufficient Protected Credentials Vulnerability - Active in CISA KEV catalog.
CVSS Base9.5
â
CRSSelect profile
â ī¸ CISA KEV
CVE-2023-43000
9.5đ Late Disclosure
AppleMultiple Products
â° Federal Deadline:March 25, 2026(14 days remaining)
Apple Multiple products Use-After-Free Vulnerability - Active in CISA KEV catalog.
CVSS Base9.5
â
CRSSelect profile
â ī¸ CISA KEV
CVE-2021-30952
9.5đ Late Disclosure
AppleMultiple Products
â° Federal Deadline:March 25, 2026(14 days remaining)
Apple Multiple Products Integer Overflow or Wraparound Vulnerability - Active in CISA KEV catalog.
CVSS Base9.5
â
CRSSelect profile
â ī¸ CISA KEV
CVE-2023-41974
9.5đ Late Disclosure
AppleiOS and iPadOS
â° Federal Deadline:March 25, 2026(14 days remaining)
Apple iOS and iPadOS Use-After-Free Vulnerability - Active in CISA KEV catalog.
CVSS Base9.5
â
CRSSelect profile
đ¨
Critical Vulnerabilities
CVE-2026-31896
9.8
HPscript uses
WeGIA is a web manager for charitable institutions. Prior to version 3.6.6, a critical SQL injection vulnerability exists in the WeGIA application. The remover_produto_ocultar.php script uses extract($_REQUEST) to populate local variables and then directly concatenates these variables into a SQL query executed via PDO::query. This allows an authenticated (or auth-bypassed) attacker to execute arbitrary SQL commands. This can be used to exfiltrate sensitive data from the database or, as demonstrated in this PoC, cause a time-based delay (denial of service). This vulnerability is fixed in 3.6.6.
CVSS Base9.8
â
CRSSelect profile
CVE-2026-31957
10đ
MicrosoftAzure Entra
Himmelblau allows unauthenticated remote attackers to bypass tenant-scoped authentication when no tenant domain is configured, enabling unauthorized access via dynamic provider registration.
CVSS Base10
â
CRSSelect profile
CVE-2026-27478
9.1đ
UnityUnity Catalog
Unity Catalog 0.4.0 and earlier contains a critical authentication bypass in the token exchange endpoint due to improper validation of the issuer claim in incoming JSON Web Tokens (JWTs).
CVSS Base9.1
â
CRSSelect profile
CVE-2026-31852
10đ
AppleApp Store
The jellyfin-ios GitHub Actions workflow is vulnerable to arbitrary code execution via pull requests, potentially leading to full repository takeover and App Store supply chain attacks.
CVSS Base10
â
CRSSelect profile
CVE-2026-27591
9.9
HPframework
Winter is a free, open-source content management system (CMS) based on the Laravel PHP framework. Prior to 1.0.477, 1.1.12, and 1.2.12, Winter CMS allowed authenticated backend users to escalate their accounts level of access to the system by modifying the roles / permissions assigned to their account through specially crafted requests to the backend while logged in. To actively exploit this security issue, an attacker would need access to the Backend with a user account with any level of access. This vulnerability is fixed in 1.0.477, 1.1.12, and 1.2.12.
CVSS Base9.9
â
CRSSelect profile
CVE-2026-30903
9.6đ
ZoomWorkplace for
A path traversal vulnerability in the Mail feature of Zoom Workplace for Windows allows unauthenticated users to conduct an escalation of privilege via network access.
CVSS Base9.6
â
CRSSelect profile
CVE-2026-2631
9.8đ
WordPressplugin before
The Datalogics Ecommerce Delivery plugin for WordPress before 2.6.60 contains an unauthenticated REST endpoint vulnerability allowing remote attackers to modify site options and gain admin access.
CVSS Base9.8
â
CRSSelect profile
CVE-2019-25471
9.8đđ Late Disclosure
ArchFileThingie
FileThingie 2.5.7 is vulnerable to arbitrary file upload via the ft2.php endpoint, allowing attackers to execute remote commands by uploading and unzipping malicious PHP shells.
CVSS Base9.8
â
CRSSelect profile
CVE-2026-28229
9.8đ
KubernetesArgo Workflows
Argo Workflows template endpoints allow unauthenticated clients to leak sensitive WorkflowTemplates and Secret manifests by providing a malformed "Bearer nothing" authorization token.
CVSS Base9.8
â
CRSSelect profile
CVE-2019-25468
9.8đđ Late Disclosure
NetGain SystemsEnterprise Manager (EM) Plus
NetGain EM Plus 10.1.68 contains an unauthenticated remote code execution vulnerability in the script_test.jsp endpoint via the 'content' parameter.
CVSS Base9.8
â
CRSSelect profile
CVE-2026-27897
10đ
VociferousVociferous
Vociferous prior to 4.4.2 contains an unauthenticated directory traversal vulnerability in the export_file route, enabling arbitrary file writes to any location accessible by the application.
CVSS Base10
â
CRSSelect profile
CVE-2025-66956
9.9đ
Insecure AccessSEE Live 2.0
Asseco SEE Live 2.0 contains insecure access control in its communication components, allowing remote attackers to access and execute attachments via computable URLs.
CVSS Base9.9
â
CRSSelect profile
CVE-2026-23813
9.8đ
HPE (Aruba)AOS-CX switches
An unauthenticated remote attacker can bypass authentication controls on AOS-CX switches, potentially allowing them to reset the administrative password and gain full control.
CVSS Base9.8
â
CRSSelect profile
CVE-2026-3826
9.8đ
WellChooseIFTOP
A Local File Inclusion (LFI) vulnerability in WellChoose IFTOP allows unauthenticated remote attackers to execute arbitrary code on the server.
CVSS Base9.8
â
CRSSelect profile
CVE-2019-25487
9.8đđ Late Disclosure
SAPRB-1732
Sapido RB-1732 V2.0.43 is vulnerable to unauthenticated remote command execution via the formSysCmd endpoint, allowing attackers to execute arbitrary shell commands with router privileges.
CVSS Base9.8
â
CRSSelect profile
CVE-2026-32136
9.8đ
AdGuardAdGuard Home
AdGuard Home is vulnerable to an unauthenticated authentication bypass via HTTP/2 cleartext (h2c) upgrades, allowing attackers to process requests as fully authenticated.
CVSS Base9.8
â
CRSSelect profile
CVE-2026-32096
9.3đ
AWSSES
Plunk contains an unauthenticated Server-Side Request Forgery (SSRF) vulnerability in its SNS webhook handler, allowing attackers to make arbitrary outbound GET requests.
CVSS Base9.3
â
CRSSelect profile
CVE-2026-31862
9.1
CloudMultiple Products
Cloud CLI (aka Claude Code UI) is a desktop and mobile UI for Claude Code, Cursor CLI, Codex, and Gemini-CLI. Prior to 1.24.0, multiple Git-related API endpoints use execAsync() with string interpolation of user-controlled parameters (file, branch, message, commit), allowing authenticated attackers to execute arbitrary OS commands. This vulnerability is fixed in 1.24.0.
CVSS Base9.1
â
CRSSelect profile
CVE-2026-27842
9.8
AuthenticationMultiple Products
Authentication bypass issue exists in MR-GM5L-S1 and MR-GM5A-L1, which may allow an attacker to bypass authentication and change the device configuration.
CVSS Base9.8
â
CRSSelect profile
CVE-2026-24448
9.8đ
Mitsubishi ElectricMR-GM Series Routers (MR-GM5L-S1, MR-GM5A-L1)
The use of hard-coded credentials in Mitsubishi Electric MR-GM series routers allows attackers to gain unauthorized administrative access to the device.
CVSS Base9.8
â
CRSSelect profile
CVE-2025-67041
9.8đ
LantronixEDS3000PS
The Lantronix EDS3000PS Filesystem Browser page contains a command injection vulnerability in the TFTP client host parameter, allowing root-level arbitrary command execution.
CVSS Base9.8
â
CRSSelect profile
CVE-2025-70082
9.8
InforMultiple Products
An issue in Lantronix EDS3000PS v.3.1.0.0R2 allows an attacker to execute arbitrary code and obtain sensitive information via the ltrx_evo component
CVSS Base9.8
â
CRSSelect profile
CVE-2018-25159
9.8đ Late Disclosure
EprossMultiple Products
Epross AVCON6 systems management platform contains an object-graph navigation language (OGNL) injection vulnerability that allows unauthenticated attackers to execute arbitrary commands by injecting malicious OGNL expressions. Attackers can send crafted requests to the login.action endpoint with OGNL payloads in the redirect parameter to instantiate ProcessBuilder objects and execute system commands with root privileges.
CVSS Base9.8
â
CRSSelect profile
CVE-2026-31874
9.8đ
TaskosaurTaskosaur
Taskosaur 1.0.0 allows unauthenticated attackers to register accounts with SUPER_ADMIN privileges by manually modifying the role parameter during the registration process.
CVSS Base9.8
â
CRSSelect profile
â ī¸
High Priority Updates
CVE-2026-20040
8.8
CiscoIOS XR
A vulnerability in the CLI of Cisco IOS XR Software could allow an authenticated, local attacker to execute arbitrary commands as root on the underlying operating system of an affected device
CVSS Base8.8
â
CRSSelect profile
CVE-2026-20046
8.8
CiscoIOS XR
A vulnerability in task group assignment for a specific CLI command in Cisco IOS XR Software could allow an authenticated, local attacker to elevate privileges and gain full administrative control of an affected device
CVSS Base8.8
â
CRSSelect profile
CVE-2026-26114
8.8
MicrosoftOffice SharePoint
Deserialization of untrusted data in Microsoft Office SharePoint allows an authorized attacker to execute code over a network
CVSS Base8.8
â
CRSSelect profile
CVE-2026-23665
7.8
LinuxVirtual Machines
Heap-based buffer overflow in Azure Linux Virtual Machines allows an authorized attacker to elevate privileges locally
CVSS Base7.8
â
CRSSelect profile
CVE-2026-26106
8.8
MicrosoftOffice SharePoint
Improper input validation in Microsoft Office SharePoint allows an authorized attacker to execute code over a network
CVSS Base8.8
â
CRSSelect profile
CVE-2026-26118
8.8
AzureMCP Server
Server-side request forgery (ssrf) in Azure MCP Server allows an authorized attacker to elevate privileges over a network
CVSS Base8.8
â
CRSSelect profile
CVE-2025-13067
8.8
WordPressis vulnerable
The Royal Addons for Elementor plugin for WordPress is vulnerable to arbitrary file upload in all versions up to, and including, 1
CVSS Base8.8
â
CRSSelect profile
CVE-2025-68623
8.8
MicrosoftDirectX End
In Microsoft DirectX End-User Runtime Web Installer 9
CVSS Base8.8
â
CRSSelect profile
CVE-2026-31979
8.8
MicrosoftAzure Entra
Himmelblau is an interoperability suite for Microsoft Azure Entra ID and Intune
CVSS Base8.8
â
CRSSelect profile
CVE-2026-21290
8.7
AdobeCommerce versions
Adobe Commerce versions 2
CVSS Base8.7
â
CRSSelect profile
CVE-2026-26109
8.4
MicrosoftOffice Excel
Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to execute code locally
CVSS Base8.4
â
CRSSelect profile
CVE-2026-26110
8.4
MicrosoftOffice allows
Access of resource using incompatible type ('type confusion') in Microsoft Office allows an unauthorized attacker to execute code locally
CVSS Base8.4
â
CRSSelect profile
CVE-2026-26113
8.4
MicrosoftOffice allows
Untrusted pointer dereference in Microsoft Office allows an unauthorized attacker to execute code locally
CVSS Base8.4
â
CRSSelect profile
CVE-2026-25172
8.8
IntegerMultiple Products
Integer overflow or wraparound in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to execute code over a network
CVSS Base8.8
â
CRSSelect profile
CVE-2026-26111
8.8
IntegerMultiple Products
Integer overflow or wraparound in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to execute code over a network
CVSS Base8.8
â
CRSSelect profile
CVE-2026-26105
8.1
MicrosoftOffice SharePoint
Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft Office SharePoint allows an unauthorized attacker to perform spoofing over a network
CVSS Base8.1
â
CRSSelect profile
CVE-2026-26148
8.1
AzureEntra ID
External initialization of trusted variables or data stores in Azure Entra ID allows an unauthorized attacker to elevate privileges locally
CVSS Base8.1
â
CRSSelect profile
CVE-2026-21284
8.1
AdobeCommerce versions
Adobe Commerce versions 2
CVSS Base8.1
â
CRSSelect profile
CVE-2026-21361
8.1
AdobeCommerce versions
Adobe Commerce versions 2
CVSS Base8.1
â
CRSSelect profile
CVE-2026-21311
8
AdobeCommerce versions
Adobe Commerce versions 2
CVSS Base8
â
CRSSelect profile
CVE-2026-23660
7.8
AzurePortal Windows
Improper access control in Azure Portal Windows Admin Center allows an authorized attacker to elevate privileges locally
CVSS Base7.8
â
CRSSelect profile
CVE-2026-25173
8
IntegerMultiple Products
Integer overflow or wraparound in Windows Routing and Remote Access Service (RRAS) allows an authorized attacker to execute code over a network
CVSS Base8
â
CRSSelect profile
CVE-2026-23669
8.8
UnknownMultiple Products
Use after free in Windows Print Spooler Components allows an authorized attacker to execute code over a network
CVSS Base8.8
â
CRSSelect profile
CVE-2026-24283
8.8
FileMultiple Products
Heap-based buffer overflow in Windows File Server allows an authorized attacker to elevate privileges locally
CVSS Base8.8
â
CRSSelect profile
CVE-2026-25188
8.8
UnknownMultiple Products
Heap-based buffer overflow in Windows Telephony Service allows an unauthorized attacker to elevate privileges over an adjacent network
CVSS Base8.8
â
CRSSelect profile
CVE-2026-3845
8.8
HeapMultiple Products
Heap buffer overflow in the Audio/Video: Playback component in Firefox for Android
CVSS Base8.8
â
CRSSelect profile
CVE-2026-22627
8.8
FortinetFortiSwitchAXFixed
A buffer copy without checking size of input ('classic buffer overflow') vulnerability in Fortinet FortiSwitchAXFixed 1
CVSS Base8.8
â
CRSSelect profile
CVE-2026-24289
7.8
UnknownMultiple Products
Use after free in Windows Kernel allows an authorized attacker to elevate privileges locally
CVSS Base7.8
â
CRSSelect profile
CVE-2026-25166
7.8
ImageMultiple Products
Deserialization of untrusted data in Windows System Image Manager allows an authorized attacker to execute code locally
CVSS Base7.8
â
CRSSelect profile
CVE-2026-3847
8.8
MemoryMultiple Products
Memory safety bugs present in Firefox 148
CVSS Base8.8
â
CRSSelect profile
CVE-2026-1992
8.8
GoogleAnalytics Dashboard
The ExactMetrics â Google Analytics Dashboard for WordPress plugin is vulnerable to Insecure Direct Object Reference in versions 8
CVSS Base8.8
â
CRSSelect profile
CVE-2026-1993
8.8
GoogleAnalytics Dashboard
The ExactMetrics â Google Analytics Dashboard for WordPress plugin is vulnerable to Improper Privilege Management in versions 7
CVSS Base8.8
â
CRSSelect profile
CVE-2025-54820
8.1
FortinetFortiManager
A Stack-based Buffer Overflow vulnerability [CWE-121] vulnerability in Fortinet FortiManager 7
CVSS Base8.1
â
CRSSelect profile
CVE-2026-3453
8.1
WordPressis vulnerable
The ProfilePress plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 4
CVSS Base8.1
â
CRSSelect profile
CVE-2026-2626
8.1
WordPressplugin before
The divi-booster WordPress plugin before 5
CVSS Base8.1
â
CRSSelect profile
CVE-2026-23672
7.8
WindowsMultiple Products
Windows Universal Disk Format File System Driver (UDFS) Elevation of Privilege Vulnerability
CVSS Base7.8
â
CRSSelect profile
CVE-2026-23673
7.8
UnknownMultiple Products
Out-of-bounds read in Windows Resilient File System (ReFS) allows an authorized attacker to elevate privileges locally
CVSS Base7.8
â
CRSSelect profile
CVE-2026-24287
7.8
ExternalMultiple Products
External control of file name or path in Windows Kernel allows an authorized attacker to elevate privileges locally
CVSS Base7.8
â
CRSSelect profile
CVE-2026-24290
7.8
UnknownMultiple Products
Improper access control in Windows Projected File System allows an authorized attacker to elevate privileges locally
CVSS Base7.8
â
CRSSelect profile
CVE-2026-24291
7.8
IncorrectMultiple Products
Incorrect permission assignment for critical resource in Windows Accessibility Infrastructure (ATBroker
CVSS Base7.8
â
CRSSelect profile
CVE-2026-24293
7.8
NullMultiple Products
Null pointer dereference in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally
CVSS Base7.8
â
CRSSelect profile
CVE-2026-24294
7.8
SMBMultiple Products
Improper authentication in Windows SMB Server allows an authorized attacker to elevate privileges locally
CVSS Base7.8
â
CRSSelect profile
CVE-2026-25165
7.8
NullMultiple Products
Null pointer dereference in Windows Performance Counters allows an authorized attacker to elevate privileges locally
CVSS Base7.8
â
CRSSelect profile
CVE-2026-25174
7.8
UnknownMultiple Products
Out-of-bounds read in Windows Extensible File Allocation allows an authorized attacker to elevate privileges locally
CVSS Base7.8
â
CRSSelect profile
CVE-2026-27826
8.2
Atlassianis
MCP Atlassian is a Model Context Protocol (MCP) server for Atlassian products (Confluence and Jira)
CVSS Base8.2
â
CRSSelect profile
CVE-2026-24017
8.1
FortinetFortiWeb
An Improper Control of Interaction Frequency vulnerability [CWE-799] vulnerability in Fortinet FortiWeb 8
CVSS Base8.1
â
CRSSelect profile
CVE-2026-22248
8
HPinstantiation
GLPI is an open-source asset and IT management software package that provides ITIL Service Desk features, licenses tracking and software auditing
CVSS Base8
â
CRSSelect profile
CVE-2026-24018
7.8
FortinetFortiClientLinux
A UNIX symbolic link (Symlink) following vulnerability in Fortinet FortiClientLinux 7
CVSS Base7.8
â
CRSSelect profile
CVE-2026-31895
8.8
HPMultiple Products
WeGIA is a web manager for charitable institutions
CVSS Base8.8
â
CRSSelect profile
CVE-2026-23654
8.8
GitHubRepo
Dependency on vulnerable third-party component in GitHub Repo: zero-shot-scfoundation allows an unauthorized attacker to execute code over a network
CVSS Base8.8
â
CRSSelect profile
CVE-2026-31828
8.8
Parsefilters without
Parse Server is an open source backend that can be deployed to any infrastructure that can run Node
CVSS Base8.8
â
CRSSelect profile
CVE-2026-3970
8.8
Tendai3
A flaw has been found in Tenda i3 1
CVSS Base8.8
â
CRSSelect profile
CVE-2026-3971
8.8
Tendai3
A vulnerability has been found in Tenda i3 1
CVSS Base8.8
â
CRSSelect profile
CVE-2026-3972
8.8
TendaW3
A vulnerability was found in Tenda W3 1
CVSS Base8.8
â
CRSSelect profile
CVE-2026-3973
8.8
TendaW3
A vulnerability was determined in Tenda W3 1
CVSS Base8.8
â
CRSSelect profile
CVE-2026-3974
8.8
TendaW3
A vulnerability was identified in Tenda W3 1
CVSS Base8.8
â
CRSSelect profile
CVE-2026-3975
8.8
TendaW3
A security flaw has been discovered in Tenda W3 1
CVSS Base8.8
â
CRSSelect profile
CVE-2026-3976
8.8
TendaW3
A weakness has been identified in Tenda W3 1
CVSS Base8.8
â
CRSSelect profile
CVE-2026-3978
8.8
D-LinkDIR
A vulnerability was detected in D-Link DIR-513 1
CVSS Base8.8
â
CRSSelect profile
CVE-2026-4007
8.8
TendaW3
A vulnerability was detected in Tenda W3 1
CVSS Base8.8
â
CRSSelect profile
CVE-2026-4008
8.8
TendaW3
A flaw has been found in Tenda W3 1
CVSS Base8.8
â
CRSSelect profile
CVE-2026-1090
8.7
versionshas remediated
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 10
CVSS Base8.7
â
CRSSelect profile
CVE-2026-30920
8.6
GitHubApp callback
OneUptime is a solution for monitoring and managing online services
CVSS Base8.6
â
CRSSelect profile
CVE-2026-21333
8.6
IllustratorPath vulnerability
Illustrator versions 29
CVSS Base8.6
â
CRSSelect profile
CVE-2026-23814
8.8
commandMultiple Products
A vulnerability in the command parameters of a certain AOS-CX CLI command could allow a low-privilege authenticated remote attacker to inject malicious commands resulting in unwanted behavior
CVSS Base8.8
â
CRSSelect profile
CVE-2019-25466
8.4đ Late Disclosure
WebMultiple Products
Easy File Sharing Web Server 7
CVSS Base8.4
â
CRSSelect profile
CVE-2026-26116
8.8
SQLMultiple Products
Improper neutralization of special elements used in an sql command ('sql injection') in SQL Server allows an authorized attacker to elevate privileges over a network
CVSS Base8.8
â
CRSSelect profile
CVE-2026-31844
8.8
InforMultiple Products
An authenticated SQL Injection vulnerability (CWE-89) exists in the Koha staff interface in the /cgi-bin/koha/suggestion/suggestion
CVSS Base8.8
â
CRSSelect profile
CVE-2026-24292
7.8
UnknownMultiple Products
Use after free in Connected Devices Platform Service (Cdpsvc) allows an authorized attacker to elevate privileges locally
CVSS Base7.8
â
CRSSelect profile
CVE-2026-30934
8.9
fileMultiple Products
FileBrowser Quantum is a free, self-hosted, web-based file manager
CVSS Base8.9
â
CRSSelect profile
CVE-2026-31889
8.9
ShopwareMultiple Products
Shopware is an open commerce platform
CVSS Base8.9
â
CRSSelect profile
CVE-2026-20967
8.8
OperationsMultiple Products
Improper input validation in System Center Operations Manager allows an authorized attacker to elevate privileges over a network
CVSS Base8.8
â
CRSSelect profile
CVE-2026-21262
8.8
SQLMultiple Products
Improper access control in SQL Server allows an authorized attacker to elevate privileges over a network
CVSS Base8.8
â
CRSSelect profile
CVE-2026-25177
8.8
ImproperMultiple Products
Improper restriction of names for files and other resources in Active Directory Domain Services allows an authorized attacker to elevate privileges over a network
CVSS Base8.8
â
CRSSelect profile
CVE-2026-26115
8.8
SQLMultiple Products
Improper validation of specified type of input in SQL Server allows an authorized attacker to elevate privileges over a network
CVSS Base8.8
â
CRSSelect profile
CVE-2026-30944
8.8
UnknownMultiple Products
StudioCMS is a server-side-rendered, Astro native, headless content management system
CVSS Base8.8
â
CRSSelect profile
CVE-2026-29172
8.8
CraftMultiple Products
Craft Commerce is an ecommerce platform for Craft CMS
CVSS Base8.8
â
CRSSelect profile
CVE-2026-29174
8.8
CraftMultiple Products
Craft Commerce is an ecommerce platform for Craft CMS
CVSS Base8.8
â
CRSSelect profile
CVE-2026-30949
8.8
ParseMultiple Products
Parse Server is an open source backend that can be deployed to any infrastructure that can run Node
CVSS Base8.8
â
CRSSelect profile
CVE-2026-30967
8.8
ParseMultiple Products
Parse Server is an open source backend that can be deployed to any infrastructure that can run Node
CVSS Base8.8
â
CRSSelect profile
CVE-2026-32059
8.8
OpenClawMultiple Products
OpenClaw version 2026
CVSS Base8.8
â
CRSSelect profile
CVE-2026-32060
8.8
priorMultiple Products
OpenClaw versions prior to 2026
CVSS Base8.8
â
CRSSelect profile
CVE-2026-32127
8.8
ajaxMultiple Products
OpenEMR is a free and open source electronic health records and medical practice management application
CVSS Base8.8
â
CRSSelect profile
CVE-2026-28513
8.5
PocketMultiple Products
Pocket ID is an OIDC provider that allows users to authenticate with their passkeys to your services
CVSS Base8.5
â
CRSSelect profile
CVE-2026-31817
8.5
UnknownMultiple Products
OliveTin gives access to predefined shell commands from a web interface
CVSS Base8.5
â
CRSSelect profile
CVE-2025-36920
8.4
ArchMultiple Products
In hyp_alloc of arch/arm64/kvm/hyp/nvhe/alloc
CVSS Base8.4
â
CRSSelect profile
CVE-2026-0107
8.4
UnknownMultiple Products
In gmc_ddr_handle_mba_mr_req of gmc_mba_ddr
CVSS Base8.4
â
CRSSelect profile
CVE-2026-0117
8.4
UnknownMultiple Products
In mfc_dec_dqbuf of mfc_dec_v4l2
CVSS Base8.4
â
CRSSelect profile
CVE-2026-0118
8.4
UnknownMultiple Products
In oobconfig, there is a possible bypass of carrier restrictions due to a logic error
CVSS Base8.4
â
CRSSelect profile
CVE-2026-0122
8.4
UnknownMultiple Products
In multiple places, there is a possible out of bounds write due to memory corruption
CVSS Base8.4
â
CRSSelect profile
CVE-2026-0123
8.4
UnknownMultiple Products
In EfwApTransport::ProcessRxRing of efw_ap_transport
CVSS Base8.4
â
CRSSelect profile
CVE-2019-25467
8.4đ Late Disclosure
docPrintMultiple Products
Verypdf docPrint Pro 8
CVSS Base8.4
â
CRSSelect profile
CVE-2019-25483
8.4đ Late Disclosure
ComtrendMultiple Products
Comtrend AR-5310 GE31-412SSG-C01_R10
CVSS Base8.4
â
CRSSelect profile
CVE-2026-32110
8.3
UnknownMultiple Products
SiYuan is a personal knowledge management system
CVSS Base8.3
â
CRSSelect profile
CVE-2026-31824
8.2
UnknownMultiple Products
Sylius is an Open Source eCommerce Framework on Symfony
CVSS Base8.2
â
CRSSelect profile
CVE-2026-31839
8.2
UnknownMultiple Products
Striae is a firearms examiner's comparison companion