17426 Total CVEs
8726 AI Analyzed
264 CISA KEV
3526 Critical
All Vendors
Showing 6401-6450 of 17426 CVEs Page 129 of 349
CVE-2026-24051
Analyzed
7
Unknown Multiple Products

OpenTelemetry-Go is the Go implementation of OpenTelemetry

2026-02-03
CVE-2026-24042
Analyzed
9.4
Unknown Multiple Products

Appsmith is a platform to build admin panels, internal tools, and dashboards. In versions 1.94 and below, publicly accessible apps allow unauthenticat...

2026-01-22
CVE-2026-24038
8.1
Horilla Multiple Products

Horilla is a free and open source Human Resource Management System (HRMS)

2026-01-22
CVE-2026-24031
7.7
Dovecot Multiple Products

Dovecot SQL based authentication can be bypassed when auth_username_chars is cleared by admin

2026-03-28
CVE-2026-24018
7.8
Fortinet FortiClientLinux

A UNIX symbolic link (Symlink) following vulnerability in Fortinet FortiClientLinux 7

2026-03-11
CVE-2026-24017
8.1
Fortinet FortiWeb

An Improper Control of Interaction Frequency vulnerability [CWE-799] vulnerability in Fortinet FortiWeb 8

2026-03-11
CVE-2026-24016
Analyzed
7.8
Microsoft Multiple Products

The installer of ServerView Agents for Windows provided by Fsas Technologies Inc

2026-01-21
CVE-2026-24014
Analyzed
9.8
Apache IoTDB

A path traversal vulnerability in the Apache IoTDB DataNode RPC interface allows unauthenticated attackers to perform arbitrary file writes.

2026-07-07
CVE-2026-24013
Analyzed
9.1
Apache Apache IoTDB

Apache IoTDB contains an authentication bypass vulnerability in its Thrift RPC handlers, allowing unauthenticated attackers to spoof session IDs and a...

2026-07-07
CVE-2026-24012
Analyzed
7.5
Apache IoTDB

Uncontrolled Resource Consumption vulnerability in Apache IoTDB

2026-07-07
CVE-2026-24010
8.8
Horilla Multiple Products

Horilla is a free and open source Human Resource Management System (HRMS)

2026-01-22
CVE-2026-24009
Analyzed
8.1
Docling Multiple Products

Docling Core (or docling-core) is a library that defines core data types and transformations in the document processing application Docling

2026-01-23
CVE-2026-24006
7.5
Seroval Multiple Products

Seroval facilitates JS value stringification, including complex structures beyond JSON

2026-01-22
CVE-2026-24002
Analyzed
9
Unknown Multiple Products

Grist is spreadsheet software using Python as its formula language. Grist offers several methods for running those formulas in a sandbox, for cases wh...

2026-01-22
CVE-2026-23997
Analyzed
8
FacturaScripts Multiple Products

FacturaScripts is open-source enterprise resource planning and accounting software

2026-02-03
CVE-2026-23995
8.4
MSI Multiple Products

EVerest is an EV charging software stack

2026-03-27
CVE-2026-23989
8.2
Arch Multiple Products

REVA is an interoperability platform

2026-02-07
CVE-2026-23988
Analyzed
7.3
Rufus Multiple Products

Rufus is a utility that helps format and create bootable USB flash drives

2026-01-24
CVE-2026-23967
Analyzed
7.5
Unknown Multiple Products

sm-crypto provides JavaScript implementations of the Chinese cryptographic algorithms SM2, SM3, and SM4

2026-01-22
CVE-2026-23966
Analyzed
9.1
Oracle Multiple Products

sm-crypto provides JavaScript implementations of the Chinese cryptographic algorithms SM2, SM3, and SM4. A private key recovery vulnerability exists i...

2026-01-22
CVE-2026-23965
Analyzed
7.5
Unknown Multiple Products

sm-crypto provides JavaScript implementations of the Chinese cryptographic algorithms SM2, SM3, and SM4

2026-01-22
CVE-2026-23962
7.5
Unknown Multiple Products

Mastodon is a free, open-source social network server based on ActivityPub

2026-01-22
CVE-2026-23957
7.5
Unknown Multiple Products

seroval facilitates JS value stringification, including complex structures beyond JSON

2026-01-22
CVE-2026-23956
7.5
Unknown Multiple Products

seroval facilitates JS value stringification, including complex structures beyond JSON

2026-01-22
CVE-2026-23954
8.7
Unknown Multiple Products

Incus is a system container and virtual machine manager

2026-01-23
CVE-2026-23953
8.7
Unknown Multiple Products

Incus is a system container and virtual machine manager

2026-01-23
CVE-2026-23950
Analyzed
8.8
Intel Multiple Products

node-tar,a Tar for Node

2026-01-20
CVE-2026-23949
Analyzed
8.6
Unknown Multiple Products

jaraco

2026-01-20
CVE-2026-23948
7.5
Unknown Multiple Products

FreeRDP is a free implementation of the Remote Desktop Protocol

2026-02-11
CVE-2026-2393
7.1
Unknown Multiple Products

A Server-Side Request Forgery (SSRF) vulnerability exists in MLflow versions prior to 3

2026-05-12
CVE-2026-23918
8.8
Apache HTTP Server

Double Free and possible RCE vulnerability in Apache HTTP Server with the HTTP/2 protocol

2026-05-05
CVE-2026-23906
Analyzed
9.8
Apache Druid

Apache Druid is vulnerable to an authentication bypass when LDAP is configured to allow anonymous binds, allowing attackers to access restricted resou...

2026-02-11
CVE-2026-23902
Analyzed
8.1
Apache DolphinScheduler allows

Incorrect Authorization vulnerability in Apache DolphinScheduler allows authenticated users with system login permissions to use tenants that are not...

2026-04-25
CVE-2026-23897
Analyzed
7.5
Apollo Apollo Server

Apollo Server is an open-source, spec-compliant GraphQL server that's compatible with any GraphQL client, including Apollo Client

2026-02-05
CVE-2026-23896
7.2
Unknown Multiple Products

immich is a high performance self-hosted photo and video management solution

2026-01-30
CVE-2026-23881
Analyzed
7.7
Kubernetes Multiple Products

Kyverno is a policy engine designed for cloud native platform engineering teams

2026-01-28
CVE-2026-23880
Analyzed
7.3
Intel Multiple Products

OnboardLite is a comprehensive membership lifecycle platform built for student organizations at the University of Central Florida

2026-01-20
CVE-2026-23876
Analyzed
8.1
ImageMagick Multiple Products

ImageMagick is free and open-source software used for editing and manipulating digital images

2026-01-20
CVE-2026-23869
7.5
React Multiple Products

A denial of service vulnerability exists in React Server Components, affecting the following packages: react-server-dom-parcel, react-server-dom-turbo...

2026-04-10
CVE-2026-23864
7.5
React Multiple Products

Multiple denial of service vulnerabilities exist in React Server Components, affecting the following packages: react-server-dom-parcel, react-server-d...

2026-01-27
CVE-2026-23862
7.8
Dell ThinOS

Dell ThinOS 10 versions prior to ThinOS 2602_10

2026-03-17
CVE-2026-23857
8.2
Dell Update Package

Dell Update Package (DUP) Framework, versions 23

2026-02-12
CVE-2026-23856
7.8
Microsoft Multiple Products

Dell iDRAC Service Module (iSM) for Windows, versions prior to 6

2026-02-13
CVE-2026-23853
8.4
Dell PowerProtect Data

Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release versions 7

2026-04-17
CVE-2026-23846
Analyzed
8.1
Docker Multiple Products

Tugtainer is a self-hosted app for automating updates of Docker containers

2026-01-20
CVE-2026-23843
Analyzed
7.1
HP Multiple Products

teklifolustur_app is a web-based PHP application that allows users to create, manage, and track quotes for their clients

2026-01-20
CVE-2026-23842
Analyzed
7.5
Intel Multiple Products

ChatterBot is a machine learning, conversational dialog engine for creating chat bots

2026-01-20
CVE-2026-23841
Analyzed
9.3
Unknown Multiple Products

Movary is a web application to track, rate and explore your movie watch history. Due to insufficient input validation, attackers can trigger cross-sit...

2026-01-20
CVE-2026-23840
Analyzed
9.3
Unknown Multiple Products

Movary is a web application to track, rate and explore your movie watch history. Due to insufficient input validation, attackers can trigger cross-sit...

2026-01-20
CVE-2026-23839
Analyzed
9.3
Unknown Multiple Products

Movary is a web application to track, rate and explore your movie watch history. Due to insufficient input validation, attackers can trigger cross-sit...

2026-01-20