17426 Total CVEs
8726 AI Analyzed
264 CISA KEV
3526 Critical
All Vendors
Showing 6851-6900 of 17426 CVEs Page 138 of 349
CVE-2026-21681
7.1
Unknown Multiple Products

iccDEV provides a set of libraries and tools that allow for the interaction, manipulation, and application of International Color Consortium (ICC) col...

2026-01-08
CVE-2026-21679
8.8
Unknown Multiple Products

iccDEV provides a set of libraries and tools that allow for the interaction, manipulation, and application of ICC color management profiles

2026-01-08
CVE-2026-21678
7.8
Unknown Multiple Products

iccDEV provides a set of libraries and tools that allow for the interaction, manipulation, and application of ICC color management profiles

2026-01-08
CVE-2026-21677
8.8
Unknown Multiple Products

iccDEV provides a set of libraries and tools for working with ICC color management profiles

2026-01-06
CVE-2026-21676
8.8
Unknown Multiple Products

iccDEV provides a set of libraries and tools for working with ICC color management profiles

2026-01-06
CVE-2026-21675
Analyzed
9.8
Unknown Multiple Products

iccDEV provides a set of libraries and tools for working with ICC color management profiles. Versions 2.3.1 and below contain a Use After Free vulnera...

2026-01-06
CVE-2026-21673
7.8
Unknown Multiple Products

iccDEV provides a set of libraries and tools for working with ICC color management profiles

2026-01-06
CVE-2026-21672
8.8
Microsoft Backup

A vulnerability allowing local privilege escalation on Windows-based Veeam Backup & Replication servers

2026-03-13
CVE-2026-21671
Analyzed
9.1
Veeam Backup

An authenticated user with the Backup Administrator role can perform remote code execution in high availability deployments of Veeam Backup & Replicat...

2026-03-13
CVE-2026-21670
Analyzed
7.7
Unknown Affected Software

A vulnerability allowing a low-privileged user to extract saved SSH credentials

2026-03-14
CVE-2026-21669
Analyzed
9.9
Veeam Backup & Replication

An authenticated domain user can execute arbitrary code on the Backup Server, leading to a complete compromise of the backup system.

2026-03-13
CVE-2026-21668
8.8
Unknown Multiple Products

A vulnerability allowing an authenticated domain user to bypass restrictions and manipulate arbitrary files on a Backup Repository

2026-03-13
CVE-2026-21667
Analyzed
9.9
Veeam Backup & Replication

A vulnerability in the Backup Server allows an authenticated domain user to perform remote code execution, compromising the backup environment.

2026-03-13
CVE-2026-21666
Analyzed
9.9
Veeam Backup & Replication

An authenticated domain user can achieve remote code execution on the Backup Server, leading to full system compromise.

2026-03-13
CVE-2026-2166
7.3
HP of the

A security vulnerability has been detected in code-projects Online Reviewer System 1

2026-02-09
CVE-2026-2165
7.3
HP of the

A weakness has been identified in detronetdip E-commerce 1

2026-02-09
CVE-2026-21643
KEV Analyzed
9.8
Fortinet FortiClientEMS

An unauthenticated SQL injection vulnerability in Fortinet FortiClientEMS 7.4.4 allows for unauthorized code or command execution via crafted HTTP req...

2026-02-06
CVE-2026-21641
7.1
HackerOne Multiple Products

HackerOne community member Jad Ghamloush (0xjad) has reported an authorization bypass vulnerability in the `tracker-delete

2026-01-21
CVE-2026-2164
7.3
HP Multiple Products

A security flaw has been discovered in detronetdip E-commerce 1

2026-02-09
CVE-2026-21638
8.8
Unknown Multiple Products

A malicious actor in Wi-Fi range of the affected product could leverage a vulnerability in the airMAX Wireless Protocol to achieve a remote code execu...

2026-01-09
CVE-2026-21633
8.8
Unifi Protect Multiple Products

A malicious actor with access to the adjacent network could obtain unauthorized access to a UniFi Protect Camera by exploiting a discovery protocol vu...

2026-01-06
CVE-2026-2161
7.3
HP Multiple Products

A vulnerability was found in itsourcecode Directory Management System 1

2026-02-09
CVE-2026-2158
7.3
HP Multiple Products

A vulnerability was detected in code-projects Student Web Portal 1

2026-02-09
CVE-2026-2157
7.2
D-Link DIR

A security vulnerability has been detected in D-Link DIR-823X 250416

2026-02-09
CVE-2026-21569
7.9
Unknown Multiple Products

This High severity XXE (XML External Entity Injection) vulnerability was introduced in version 7

2026-01-28
CVE-2026-2155
7.2
D-Link DIR

A security flaw has been discovered in D-Link DIR-823X 250416

2026-02-09
CVE-2026-21537
Analyzed
8.8
Microsoft Defender for

Improper control of generation of code ('code injection') in Microsoft Defender for Linux allows an unauthorized attacker to execute code over an adja...

2026-02-11
CVE-2026-21536
Analyzed
9.8
Microsoft Devices Pricing

A remote code execution vulnerability exists in the Microsoft Devices Pricing Program. An attacker could exploit this to execute arbitrary code on the...

2026-03-06
CVE-2026-21535
Analyzed
8.2
Microsoft Teams allows

Improper access control in Microsoft Teams allows an unauthorized attacker to disclose information over a network

2026-02-20
CVE-2026-21533
KEV Analyzed
7.8
Microsoft Windows Remote Desktop

Improper privilege management in Windows Remote Desktop allows an authorized attacker to elevate privileges locally

2026-02-11
CVE-2026-21532
Analyzed
8.2
Microsoft Function Information

Azure Function Information Disclosure Vulnerability

2026-02-06
CVE-2026-21531
Analyzed
9.8
Microsoft SDK allows

A deserialization vulnerability in the Azure SDK allows an unauthenticated attacker to execute arbitrary code over a network by sending specially craf...

2026-02-11
CVE-2026-21525
KEV
9.5
Microsoft Windows

Microsoft Windows NULL Pointer Dereference Vulnerability - Active in CISA KEV catalog.

2026-02-11
CVE-2026-21524
Analyzed
7.4
Microsoft Multiple Products

Exposure of sensitive information to an unauthorized actor in Azure Data Explorer allows an unauthorized attacker to disclose information over a netwo...

2026-01-24
CVE-2026-21523
8
GitHub Copilot and

Time-of-check time-of-use (toctou) race condition in GitHub Copilot and Visual Studio allows an authorized attacker to execute code over a network

2026-02-11
CVE-2026-21521
7.4
Unknown Multiple Products

Improper neutralization of escape, meta, or control sequences in Copilot allows an unauthorized attacker to disclose information over a network

2026-01-24
CVE-2026-21520
7.5
Exposure Multiple Products

Exposure of Sensitive Information to an Unauthorized Actor in Copilot Studio allows a unauthenticated attacker to view sensitive information through n...

2026-01-23
CVE-2026-2152
7.2
HP of the

A vulnerability was found in D-Link DIR-615 4

2026-02-09
CVE-2026-21519
KEV Analyzed
7.8
Microsoft Desktop Window Manager (DWM)

Access of resource using incompatible type ('type confusion') in Desktop Window Manager allows an authorized attacker to elevate privileges locally

2026-02-11
CVE-2026-21516
8.8
GitHub Copilot allows

Improper neutralization of special elements used in a command ('command injection') in Github Copilot allows an unauthorized attacker to execute code...

2026-02-11
CVE-2026-21515
Analyzed
9.9
Microsoft IOT Central

Exposure of sensitive information to an unauthorized actor in Azure IOT Central allows an authorized attacker to elevate privileges over a network.

2026-04-25
CVE-2026-21514
KEV Analyzed
7.8
Microsoft Office Word

Reliance on untrusted inputs in a security decision in Microsoft Office Word allows an unauthorized attacker to bypass a security feature locally

2026-02-11
CVE-2026-21513
KEV Analyzed
8.8
Microsoft MSHTML Framework

Protection mechanism failure in MSHTML Framework allows an unauthorized attacker to bypass a security feature over a network

2026-02-11
CVE-2026-21510
KEV Analyzed
8.8
Microsoft Windows Shell

Protection mechanism failure in Windows Shell allows an unauthorized attacker to bypass a security feature over a network

2026-02-11
CVE-2026-2151
7.2
HP of the

A vulnerability has been found in D-Link DIR-615 4

2026-02-09
CVE-2026-21509
KEV Analyzed
7.8
Microsoft Multiple Products

Reliance on untrusted inputs in a security decision in Microsoft Office allows an unauthorized attacker to bypass a security feature locally

2026-01-27
CVE-2026-21507
7.5
Unknown Multiple Products

iccDEV provides a set of libraries and tools for working with ICC color management profiles

2026-01-06
CVE-2026-21486
7.8
Unknown Multiple Products

iccDEV provides a set of libraries and tools for working with ICC color management profiles

2026-01-06
CVE-2026-21485
8.8
Unknown Multiple Products

iccDEV provides a set of libraries and tools for working with ICC color management profiles

2026-01-06
CVE-2026-21452
Analyzed
7.5
MessagePack Multiple Products

MessagePack for Java is a serializer implementation for Java

2026-01-03