Critical vulnerabilities, curated daily for security professionals
đ¯ SSCV Profile
See how vulnerabilities affect your specific environment
CRS uses the System Security Context Vector (SSCV) Framework v1.0 to adjust CVSS scores based on your system's exposure level, network position, and business criticality. Learn more about SSCV Framework
Risk scores will be adjusted based on your selected environment
đ
Archived Security Brief
Yesterday's disclosure batch contains 10 critical-severity CVEs, an 11% increase from the prior day's 9 critical issues. High-priority vulnerabilities decreased 14% to 78, down from 91. The 14 actively exploited vulnerabilities include CVE-2026-1281 affecting Ivanti Endpoint Manager Mobile, CVE-2026-20805 targeting Microsoft Windows, and CVE-2026-20045 in Cisco Unified Communications Manager. Notable critical disclosures include CVE-2026-1699 (CVSS 10.0) in Eclipse Theia Website and CVE-2026-0963 (CVSS 9.9) in Crafty Controller's File Operations API. Patch availability stands at 0%, requiring organizations to implement compensating controls until vendor remediations become available.
10 critical CVEs disclosed (CVSS 9.0+), up 11% from prior day
78 high-priority CVEs (CVSS 7.0-8.9), down 14% from 91
14 actively exploited vulnerabilities targeting Ivanti, Microsoft Windows, Cisco, and Zimbra
0% patch availability across disclosed vulnerabilities
Critical issues affect Eclipse Theia, Crafty Controller, VMware vCenter Server, and Linux Kernel
Immediate action: Prioritize review of Ivanti Endpoint Manager Mobile, Microsoft Windows, Cisco Unified Communications Manager, and VMware vCenter Server deployments for actively exploited vulnerabilities. With no patches currently available, implement network segmentation, enhanced monitoring, and access restrictions as interim mitigations.
đĄ Tip: Swipe CVE cards left to â star, right to â remove
Section Navigation
â ī¸
CISA Known Exploited Vulnerabilities
â ī¸ CISA KEVURGENT
CVE-2026-1281
9.8
A code injection in Ivanti Endpoint Manager Mobile allowing attackers to achieve unauthenticated remote codeMultiple Products
â° Federal Deadline:January 31, 2026(1 days remaining)
A code injection in Ivanti Endpoint Manager Mobile allowing attackers to achieve unauthenticated remote code execution.
CVSS Base9.8
â
CRSSelect profile
â ī¸ CISA KEVURGENT
CVE-2025-8110
9.5
GogsGogs
â° Federal Deadline:February 1, 2026(2 days remaining)
Gogs Path Traversal Vulnerability - Active in CISA KEV catalog.
CVSS Base9.5
â
CRSSelect profile
â ī¸ CISA KEVURGENT
CVE-2026-20805
9.5
MicrosoftWindows
â° Federal Deadline:February 2, 2026(3 days remaining)
Microsoft Windows Information Disclosure Vulnerability - Active in CISA KEV catalog.
CVSS Base9.5
â
CRSSelect profile
â ī¸ CISA KEV
CVE-2026-20045
9.5đ
CiscoUnified Communications Manager
â° Federal Deadline:February 10, 2026(11 days remaining)
Cisco Unified Communications Products Code Injection Vulnerability - Active in CISA KEV catalog.
CVSS Base9.5
â
CRSSelect profile
â ī¸ CISA KEV
CVE-2025-68645
9.5đ
Synacor Zimbra Collaboration Suite (ZCS)
â° Federal Deadline:February 11, 2026(12 days remaining)
Synacor Zimbra Collaboration Suite (ZCS) PHP Remote File Inclusion Vulnerability - Active in CISA KEV catalog.
CVSS Base9.5
â
CRSSelect profile
â ī¸ CISA KEV
CVE-2025-34026
9.5
VersaConcerto
â° Federal Deadline:February 11, 2026(12 days remaining)
Versa Concerto Improper Authentication Vulnerability - Active in CISA KEV catalog.
CVSS Base9.5
â
CRSSelect profile
â ī¸ CISA KEV
CVE-2025-31125
9.5
ViteVitejs
â° Federal Deadline:February 11, 2026(12 days remaining)
Vite Vitejs Improper Access Control Vulnerability - Active in CISA KEV catalog.
CVSS Base9.5
â
CRSSelect profile
â ī¸ CISA KEV
CVE-2025-54313
9.5
Prettiereslint-config-prettier
â° Federal Deadline:February 11, 2026(12 days remaining)
Prettier eslint-config-prettier Embedded Malicious Code Vulnerability - Active in CISA KEV catalog.
CVSS Base9.5
â
CRSSelect profile
â ī¸ CISA KEV
CVE-2024-37079
9.5
BroadcomVMware vCenter Server
â° Federal Deadline:February 12, 2026(13 days remaining)
Broadcom VMware vCenter Server Out-of-bounds Write Vulnerability - Active in CISA KEV catalog.
CVSS Base9.5
â
CRSSelect profile
â ī¸ CISA KEV
CVE-2018-14634
9.5
LinuxKernal
â° Federal Deadline:February 15, 2026(16 days remaining)
Linux Kernel Integer Overflow Vulnerability - Active in CISA KEV catalog.
CVSS Base9.5
â
CRSSelect profile
â ī¸ CISA KEV
CVE-2025-52691
9.5đ
SmarterToolsSmarterMail
â° Federal Deadline:February 15, 2026(16 days remaining)
SmarterTools SmarterMail Unrestricted Upload of File with Dangerous Type Vulnerability - Active in CISA KEV catalog.
CVSS Base9.5
â
CRSSelect profile
â ī¸ CISA KEV
CVE-2026-23760
9.5
SmarterToolsSmarterMail
â° Federal Deadline:February 15, 2026(16 days remaining)
SmarterTools SmarterMail Authentication Bypass Using an Alternate Path or Channel Vulnerability - Active in CISA KEV catalog.
CVSS Base9.5
â
CRSSelect profile
â ī¸ CISA KEV
CVE-2026-24061
9.5đ
GNUInetUtils
â° Federal Deadline:February 15, 2026(16 days remaining)
GNU InetUtils Argument Injection Vulnerability - Active in CISA KEV catalog.
CVSS Base9.5
â
CRSSelect profile
â ī¸ CISA KEV
CVE-2026-21509
9.5đ
MicrosoftOffice
â° Federal Deadline:February 15, 2026(16 days remaining)
Microsoft Office Security Feature Bypass Vulnerability - Active in CISA KEV catalog.
CVSS Base9.5
â
CRSSelect profile
đ¨
Critical Vulnerabilities
CVE-2020-37052
9.8đ
AirControlMultiple Products
AirControl 1.4.2 contains a pre-authentication remote code execution vulnerability that allows unauthenticated attackers to execute arbitrary system commands through malicious Java expression injection. Attackers can exploit the /.seam endpoint by crafting a specially constructed URL with embedded Java expressions to run commands with the application's system privileges.
CVSS Base9.8
â
CRSSelect profile
CVE-2025-51958
9.8đ
aelsantex runcommandMultiple Products
aelsantex runcommand 2014-04-01, a plugin for DokuWiki, allows unauthenticated attackers to execute arbitrary system commands via lib/plugins/runcommand/postaction.php.
CVSS Base9.8
â
CRSSelect profile
CVE-2026-25130
9.6đ
Cybersecurity AIMultiple Products
Cybersecurity AI (CAI) is a framework for AI Security. In versions up to and including 0.5.10, the CAI (Cybersecurity AI) framework contains multiple argument injection vulnerabilities in its function tools. User-controlled input is passed directly to shell commands via `subprocess.Popen()` with `shell=True`, allowing attackers to execute arbitrary commands on the host system. The `find_file()` tool executes without requiring user approval because find is considered a "safe" pre-approved command. This means an attacker can achieve Remote Code Execution (RCE) by injecting malicious arguments (like -exec) into the args parameter, completely bypassing any human-in-the-loop safety mechanisms. Commit e22a1220f764e2d7cf9da6d6144926f53ca01cde contains a fix.
CVSS Base9.6
â
CRSSelect profile
CVE-2019-25232
9.8đ
NetPCLinkerMultiple Products
NetPCLinker 1.0.0.0 contains a buffer overflow vulnerability in the Clients Control Panel DNS/IP field that allows attackers to execute arbitrary shellcode. Attackers can craft a malicious payload in the DNS/IP input to overwrite SEH handlers and execute shellcode when adding a new client.
CVSS Base9.8
â
CRSSelect profile
CVE-2026-0963
9.9đ
An input neutralization vulnerability in the File Operations API Endpoint component of Crafty Controller allows aMultiple Products
An input neutralization vulnerability in the File Operations API Endpoint component of Crafty Controller allows a remote, authenticated attacker to perform file tampering and remote code execution via path traversal.
CVSS Base9.9
â
CRSSelect profile
CVE-2020-37043
9.8đ
UnknownMultiple Products
10-Strike Bandwidth Monitor 3.9 contains a buffer overflow vulnerability that allows attackers to bypass SafeSEH, ASLR, and DEP protections through carefully crafted input. Attackers can exploit the vulnerability by sending a malicious payload to the application's registration key input, enabling remote code execution and launching arbitrary system commands.
CVSS Base9.8
â
CRSSelect profile
CVE-2020-37050
9.8đ
Quick PlayerMultiple Products
Quick Player 1.3 contains a buffer overflow vulnerability that allows attackers to execute arbitrary code by crafting a malicious .m3l file with carefully constructed payload. Attackers can trigger the vulnerability by loading a specially crafted file through the application's file loading mechanism, potentially enabling remote code execution.
CVSS Base9.8
â
CRSSelect profile
CVE-2020-37027
9.8đ
Sickbeard alpha contains a remote command injection vulnerability that allows unauthenticated attackers to execute arbitrary commands through the extra scriptsMultiple Products
Sickbeard alpha contains a remote command injection vulnerability that allows unauthenticated attackers to execute arbitrary commands through the extra scripts configuration. Attackers can set malicious commands in the extra scripts field and trigger processing to execute remote code on the vulnerable Sickbeard installation.
CVSS Base9.8
â
CRSSelect profile
CVE-2026-1699
10đ
In the Eclipse Theia WebsiteMultiple Products
In the Eclipse Theia Website repository, the GitHub Actions workflow .github/workflows/preview.yml used pull_request_target trigger while checking out and executing untrusted pull request code. This allowed any GitHub user to execute arbitrary code in the repository's CI environment with access to repository secrets and a GITHUB_TOKEN with extensive write permissions (contents:write, packages:write, pages:write, actions:write). An attacker could exfiltrate secrets, publish malicious packages to the eclipse-theia organization, modify the official Theia website, and push malicious code to the repository.
CVSS Base10
â
CRSSelect profile
CVE-2020-37056
9.8đ
Crystal ShardMultiple Products
Crystal Shard http-protection 0.2.0 contains an IP spoofing vulnerability that allows attackers to bypass protection middleware by manipulating request headers. Attackers can hardcode consistent IP values across X-Forwarded-For, X-Client-IP, and X-Real-IP headers to circumvent security checks and gain unauthorized access.
CVSS Base9.8
â
CRSSelect profile
â ī¸
High Priority Updates
CVE-2020-37051
8.2đ
feedbackMultiple Products
Online-Exam-System 2015 contains a time-based blind SQL injection vulnerability in the feedback form that allows attackers to extract database password hashes
CVSS Base8.2
â
CRSSelect profile
CVE-2020-37057
8.2đ
feedback moduleMultiple Products
Online-Exam-System 2015 contains a SQL injection vulnerability in the feedback module that allows attackers to manipulate database queries through the 'fid' parameter
CVSS Base8.2
â
CRSSelect profile
CVE-2025-36384
8.4đ
IBMMultiple Products
IBM Db2 for Windows 12
CVSS Base8.4
â
CRSSelect profile
CVE-2020-37035
8.2đ
PHPMultiple Products
e-Learning PHP Script 0
CVSS Base8.2
â
CRSSelect profile
CVE-2020-36995
7.5đ
forMultiple Products
Mocha Telnet Lite for iOS 4
CVSS Base7.5
â
CRSSelect profile
CVE-2025-36184
7.2đ
IBMMultiple Products
IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server)Â 11
CVSS Base7.2
â
CRSSelect profile
CVE-2026-21418
7.8đ
DellMultiple Products
Dell Unity, version(s) 5
CVSS Base7.8
â
CRSSelect profile
CVE-2026-22277
7.8đ
DellMultiple Products
Dell UnityVSA, version(s) 5
CVSS Base7.8
â
CRSSelect profile
CVE-2026-1616
7.5đ
TheMultiple Products
The $uri$args concatenation in nginx configuration file present in Open Security Issue Management (OSIM) prior v2025
CVSS Base7.5
â
CRSSelect profile
CVE-2026-0805
8.2đ
BackupMultiple Products
An input neutralization vulnerability in the Backup Configuration component of Crafty Controller allows a remote, authenticated attacker to perform file tampering and remote code execution via path traversal
CVSS Base8.2
â
CRSSelect profile
CVE-2025-4686
8.6đ
Kodmatic ComputerMultiple Products
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Kodmatic Computer Software Tourism Construction Industry and Trade Ltd
CVSS Base8.6
â
CRSSelect profile
CVE-2025-69662
8.6đ
geopandas before SQLMultiple Products
SQL injection vulnerability in geopandas before v
CVSS Base8.6
â
CRSSelect profile
CVE-2026-24902
7.1đ
priorMultiple Products
TrustTunnel is an open-source VPN protocol with a server-side request forgery and and private network restriction bypass in versions prior to 0
CVSS Base7.1
â
CRSSelect profile
CVE-2025-7714
7.5đ
Global InteractiveMultiple Products
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Global Interactive Design Media Software Inc
CVSS Base7.5
â
CRSSelect profile
CVE-2020-37009
8.8đ
PACSMultiple Products
MedDream PACS Server 6
CVSS Base8.8
â
CRSSelect profile
CVE-2025-69516
8.8
AMultiple Products
A Server-Side Template Injection (SSTI) vulnerability in the /reporting/templates/preview/ endpoint of Amidaware Tactical RMM, affecting versions equal to or earlier than v1
CVSS Base8.8
â
CRSSelect profile
CVE-2026-1637
8.8
wasMultiple Products
A vulnerability was identified in Tenda AC21 16
CVSS Base8.8
â
CRSSelect profile
CVE-2026-1686
8.8
TotolinkMultiple Products
A security flaw has been discovered in Totolink A3600R 5
CVSS Base8.8
â
CRSSelect profile
CVE-2026-24854
8.8
ChurchCRMMultiple Products
ChurchCRM is an open-source church management system
CVSS Base8.8
â
CRSSelect profile
CVE-2020-37023
8.8
KokenMultiple Products
Koken CMS 0
CVSS Base8.8
â
CRSSelect profile
CVE-2020-37032
8.8
FTPMultiple Products
Wing FTP Server 6
CVSS Base8.8
â
CRSSelect profile
CVE-2020-37001
8.4
FrigateMultiple Products
Frigate Professional 3
CVSS Base8.4
â
CRSSelect profile
CVE-2020-37013
8.4
PlaybackMultiple Products
Audio Playback Recorder 3
CVSS Base8.4
â
CRSSelect profile
CVE-2020-37024
8.4
DVDMultiple Products
Nidesoft DVD Ripper 5
CVSS Base8.4
â
CRSSelect profile
CVE-2020-37025
8.4
ForwardingMultiple Products
Port Forwarding Wizard 4
CVSS Base8.4
â
CRSSelect profile
CVE-2020-37028
8.4
ConverterMultiple Products
Socusoft Photo to Video Converter Professional 8
CVSS Base8.4
â
CRSSelect profile
CVE-2020-37029
8.4
FTPDummyMultiple Products
FTPDummy 4
CVSS Base8.4
â
CRSSelect profile
CVE-2020-37031
8.4
StartupMultiple Products
Simple Startup Manager 1
CVSS Base8.4
â
CRSSelect profile
CVE-2020-37036
8.4
DownloaderMultiple Products
RM Downloader 2
CVSS Base8.4
â
CRSSelect profile
CVE-2020-37040
8.4
CodeMultiple Products
Code Blocks 17
CVSS Base8.4
â
CRSSelect profile
CVE-2020-37042
8.4
FrigateMultiple Products
Frigate Professional 3
CVSS Base8.4
â
CRSSelect profile
CVE-2020-37049
8.4
FrigateMultiple Products
Frigate 3
CVSS Base8.4
â
CRSSelect profile
CVE-2025-62514
8.3
ParsecMultiple Products
Parsec is a cloud-based application for cryptographically secure file sharing
CVSS Base8.3
â
CRSSelect profile
CVE-2020-36999
8.2
ElaniinMultiple Products
Elaniin CMS 1
CVSS Base8.2
â
CRSSelect profile
CVE-2020-37004
8.2
ProjectMultiple Products
Ultimate Project Manager CRM PRO 2
CVSS Base8.2
â
CRSSelect profile
CVE-2020-37006
8.2
berliCRMMultiple Products
berliCRM 1
CVSS Base8.2
â
CRSSelect profile
CVE-2025-1395
8.2
Codriapp InnovationMultiple Products
Generation of Error Message Containing Sensitive Information vulnerability in Codriapp Innovation and Software Technologies Inc
CVSS Base8.2
â
CRSSelect profile
CVE-2020-37033
8.2
InforMultiple Products
Infor Storefront B2B 1
CVSS Base8.2
â
CRSSelect profile
CVE-2026-1610
8.1
wasMultiple Products
A vulnerability was found in Tenda AX12 Pro V2 16
CVSS Base8.1
â
CRSSelect profile
CVE-2025-7016
8
Improper AccessMultiple Products
Improper Access Control vulnerability in AkÄąn Software Computer Import Export Industry and Trade Ltd
CVSS Base8
â
CRSSelect profile
CVE-2020-37016
7.8
BarcodeOCRMultiple Products
BarcodeOCR 19
CVSS Base7.8
â
CRSSelect profile
CVE-2020-37017
7.8
CodeMeterMultiple Products
CodeMeter 6
CVSS Base7.8
â
CRSSelect profile
CVE-2020-37020
7.8
SonarQubeMultiple Products
SonarQube 8
CVSS Base7.8
â
CRSSelect profile
CVE-2020-37021
7.8
BandwidthMultiple Products
10-Strike Bandwidth Monitor 3
CVSS Base7.8
â
CRSSelect profile
CVE-2020-37030
7.8
OutlineMultiple Products
Outline Service 1
CVSS Base7.8
â
CRSSelect profile
CVE-2020-37058
7.8
FiltersMultiple Products
Andrea ST Filters Service 1
CVSS Base7.8
â
CRSSelect profile
CVE-2020-37059
7.8
PopcornMultiple Products
Popcorn Time 6
CVSS Base7.8
â
CRSSelect profile
CVE-2020-37060
7.8
AlarmMultiple Products
Atomic Alarm Clock 6
CVSS Base7.8
â
CRSSelect profile
CVE-2025-62348
7.8
UnknownMultiple Products
Salt's junos execution module contained an unsafe YAML decode/load usage
CVSS Base7.8
â
CRSSelect profile
CVE-2026-25153
7.7
developerMultiple Products
Backstage is an open framework for building developer portals, and @backstage/plugin-techdocs-node provides common node
CVSS Base7.7
â
CRSSelect profile
CVE-2026-25116
7.6
RuntipiMultiple Products
Runtipi is a personal homeserver orchestrator
CVSS Base7.6
â
CRSSelect profile
CVE-2020-37008
7.5
EasyPMSMultiple Products
EasyPMS 1
CVSS Base7.5
â
CRSSelect profile
CVE-2020-37011
7.5
FontsMultiple Products
Gnome Fonts Viewer 3
CVSS Base7.5
â
CRSSelect profile
CVE-2020-37015
7.5
RuijieMultiple Products
Ruijie Networks Switch eWeb S29_RGOS 11
CVSS Base7.5
â
CRSSelect profile
CVE-2025-7713
7.5
Global InteractiveMultiple Products
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Global Interactive Design Media Software Inc
CVSS Base7.5
â
CRSSelect profile
CVE-2026-24714
7.5
NETGEARMultiple Products
Some end of service NETGEAR products provide "TelnetEnable" functionality, which allows a magic packet to activate telnet service on the box
CVSS Base7.5
â
CRSSelect profile
CVE-2024-4027
7.5
flawMultiple Products
A flaw was found in Undertow
CVSS Base7.5
â
CRSSelect profile
CVE-2026-25128
7.5
UnknownMultiple Products
fast-xml-parser allows users to validate XML, parse XML to JS object, or build XML from JS object without C/C++ based libraries and no callback
CVSS Base7.5
â
CRSSelect profile
CVE-2020-37034
7.5
HelloWebMultiple Products
HelloWeb 2
CVSS Base7.5
â
CRSSelect profile
CVE-2020-37038
7.5
CodeMultiple Products
Code Blocks 20
CVSS Base7.5
â
CRSSelect profile
CVE-2020-37039
7.5
FrigateMultiple Products
Frigate 2
CVSS Base7.5
â
CRSSelect profile
CVE-2020-37041
7.5
OpenCTIMultiple Products
OpenCTI 3
CVSS Base7.5
â
CRSSelect profile
CVE-2026-1589
7.3
ManagementMultiple Products
A vulnerability was determined in itsourcecode School Management System 1
CVSS Base7.3
â
CRSSelect profile
CVE-2026-1590
7.3
ManagementMultiple Products
A vulnerability was identified in itsourcecode School Management System 1
CVSS Base7.3
â
CRSSelect profile
CVE-2026-1593
7.3
ManagementMultiple Products
A weakness has been identified in itsourcecode Society Management System 1
CVSS Base7.3
â
CRSSelect profile
CVE-2026-1594
7.3
ManagementMultiple Products
A security vulnerability has been detected in itsourcecode Society Management System 1
CVSS Base7.3
â
CRSSelect profile
CVE-2026-1595
7.3
ManagementMultiple Products
A vulnerability was detected in itsourcecode Society Management System 1
CVSS Base7.3
â
CRSSelect profile
CVE-2026-1687
7.3
weaknessMultiple Products
A weakness has been identified in Tenda HG10 US_HG7_HG9_HG10re_300001138_en_xpon
CVSS Base7.3
â
CRSSelect profile
CVE-2026-1688
7.3
ManagementMultiple Products
A security vulnerability has been detected in itsourcecode Directory Management System 1
CVSS Base7.3
â
CRSSelect profile
CVE-2026-1689
7.3
wasMultiple Products
A vulnerability was detected in Tenda HG10 US_HG7_HG9_HG10re_300001138_en_xpon
CVSS Base7.3
â
CRSSelect profile
CVE-2026-1701
7.3
ManagementMultiple Products
A security vulnerability has been detected in itsourcecode Student Management System 1
CVSS Base7.3
â
CRSSelect profile
CVE-2026-25156
7.3
HotCRPMultiple Products
HotCRP is conference review software
CVSS Base7.3
â
CRSSelect profile
CVE-2026-23896
7.2
immichMultiple Products
immich is a high performance self-hosted photo and video management solution
CVSS Base7.2
â
CRSSelect profile
CVE-2026-0709
7.2
SomeMultiple Products
Some Hikvision Wireless Access Points are vulnerable to authenticated command execution due to insufficient input validation
CVSS Base7.2
â
CRSSelect profile
CVE-2026-22623
7.2
insufficientMultiple Products
Due to insufficient input parameter validation on the interface, authenticated users of certain HIKSEMI NAS products can execute arbitrary commands on the device by crafting specific messages
CVSS Base7.2
â
CRSSelect profile
CVE-2020-37005
7.1
TimeClockMultiple Products
TimeClock Software 1
CVSS Base7.1
â
CRSSelect profile
CVE-2026-25126
7.1
PolarLearnMultiple Products
PolarLearn is a free and open-source learning program