17426 Total CVEs
8726 AI Analyzed
264 CISA KEV
3526 Critical
All Vendors
Showing 7151-7200 of 17426 CVEs Page 144 of 349
CVE-2026-20126
Analyzed
8.8
Cisco Catalyst SD

A vulnerability in Cisco Catalyst SD-WAN Manager could allow an authenticated, local attacker with low privileges to gain root privileges on the under...

2026-02-26
CVE-2026-20125
7.7
Cisco IOS Software

A vulnerability in the HTTP Server feature of Cisco IOS Software and Cisco IOS XE Software Release 3E could allow an authenticated, remote attacker to...

2026-03-26
CVE-2026-20122
KEV
9.5
Cisco Catalyst SD-WAN Manger

Cisco Catalyst SD-WAN Manager Incorrect Use of Privileged APIs Vulnerability - Active in CISA KEV catalog.

2026-04-21
CVE-2026-2012
7.3
HP Multiple Products

A vulnerability was determined in itsourcecode Student Management System 1

2026-02-06
CVE-2026-20119
Analyzed
7.5
Cisco TelePresence Collaboration

A vulnerability in the text rendering subsystem of Cisco TelePresence Collaboration Endpoint (CE) Software and Cisco RoomOS Software could allow an un...

2026-02-05
CVE-2026-2011
7.3
HP Multiple Products

A vulnerability was found in itsourcecode Student Management System 1

2026-02-06
CVE-2026-20105
Analyzed
7.7
Cisco Secure Firewall

A vulnerability in the Remote Access SSL VPN functionality of Cisco Secure Firewall Adaptive Security Appliance (ASA) Software and Secure Firewall Thr...

2026-03-05
CVE-2026-20103
Analyzed
8.6
Cisco Secure Firewall

A vulnerability in the Remote Access SSL VPN functionality of Cisco Secure Firewall Adaptive Security Appliance (ASA) Software and Secure Firewall Thr...

2026-03-05
CVE-2026-20101
8.6
Cisco Secure Firewall

A vulnerability in the SAML 2

2026-03-05
CVE-2026-20100
Analyzed
7.7
Cisco Secure Firewall

A vulnerability in the LUA interperter of the Remote Access SSL VPN feature of Cisco Secure Firewall Adaptive Security Appliance (ASA) Software and Se...

2026-03-05
CVE-2026-20098
Analyzed
8.8
Cisco Meeting Management

A vulnerability in the Certificate Management feature of Cisco Meeting Management could allow an authenticated, remote attacker to upload arbitrary fi...

2026-02-05
CVE-2026-20094
8.8
Cisco IMC could

A vulnerability in the web-based management interface of Cisco IMC could allow an authenticated, remote attacker with read-only privileges to perform...

2026-04-02
CVE-2026-20093
Analyzed
9.8
Cisco Integrated Management

An authentication bypass in Cisco IMC's password change functionality allows unauthenticated remote attackers to reset any user's password and gain ad...

2026-04-02
CVE-2026-20086
Analyzed
8.6
Cisco IOS XE

A vulnerability in the processing of Control and Provisioning of Wireless Access Points (CAPWAP) packets of Cisco IOS XE Wireless Controller Software...

2026-03-26
CVE-2026-20084
Analyzed
8.6
Cisco IOS XE

A vulnerability in the DHCP snooping feature of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause BOOTP packets to be for...

2026-03-26
CVE-2026-20082
8.6
Cisco Secure Firewall

A vulnerability in the handling of the embryonic connection limits in Cisco Secure Firewall Adaptive Security Appliance (ASA) Software could allow an...

2026-03-05
CVE-2026-20079
Analyzed
10
Cisco Secure Firewall

An improper system process at boot time in Cisco FMC allows unauthenticated attackers to bypass authentication and execute scripts via HTTP requests t...

2026-03-05
CVE-2026-2007
8.2
PostgreSQL pg

Heap buffer overflow in PostgreSQL pg_trgm allows a database user to achieve unknown impacts via a crafted input string

2026-02-13
CVE-2026-20062
7.2
Cisco Secure Firewall

A vulnerability in the CLI of Cisco Secure Firewall Adaptive Security Appliance (ASA) Software in multiple context mode could allow an authenticated,...

2026-03-05
CVE-2026-2006
8.8
PostgreSQL text manipulation

Missing validation of multibyte character length in PostgreSQL text manipulation allows a database user to issue crafted queries that achieve a buffer...

2026-02-13
CVE-2026-20051
Analyzed
7.4
Cisco Nexus

A vulnerability with the Ethernet VPN (EVPN) Layer 2 ingress packet processing of Cisco Nexus 3600 Platform Switches and Cisco Nexus 9500-R Series Swi...

2026-02-26
CVE-2026-2005
8.8
PostgreSQL pgcrypto allows

Heap buffer overflow in PostgreSQL pgcrypto allows a ciphertext provider to execute arbitrary code as the operating system user running the database

2026-02-13
CVE-2026-20049
Analyzed
7.7
Microsoft Secure Firewall

A vulnerability in the processing of Galois/Counter Mode (GCM)-encrypted Internet Key Exchange version 2 (IKEv2) IPsec traffic of Cisco Secure Firewal...

2026-03-05
CVE-2026-20048
Analyzed
7.7
Cisco Nexus

A vulnerability in the Simple Network Management Protocol (SNMP) subsystem of Cisco Nexus 9000 Series Fabric Switches in ACI mode could allow an authe...

2026-02-26
CVE-2026-20046
Analyzed
8.8
Cisco IOS XR

A vulnerability in task group assignment for a specific CLI command in Cisco IOS XR Software could allow an authenticated, local attacker to elevate p...

2026-03-12
CVE-2026-20045
KEV Analyzed
8.2
Cisco Multiple Products

A vulnerability in Cisco Unified Communications Manager (Unified CM), Cisco Unified Communications Manager Session Management Edition (Unified CM SME)...

2026-01-22
CVE-2026-20040
Analyzed
8.8
Cisco IOS XR

A vulnerability in the CLI of Cisco IOS XR Software could allow an authenticated, local attacker to execute arbitrary commands as root on the underlyi...

2026-03-12
CVE-2026-2004
8.8
PostgreSQL intarray extension

Missing validation of type of input in PostgreSQL intarray extension selectivity estimator function allows an object creator to execute arbitrary code...

2026-02-13
CVE-2026-20039
8.6
Cisco Secure Firewall

A vulnerability in the VPN web server of Cisco Secure Firewall Adaptive Security Appliance (ASA) Software and Cisco Secure Firewall Threat Defense (FT...

2026-03-05
CVE-2026-20034
8.8
Cisco Unity Connection

A vulnerability in the web-based management interface of Cisco Unity Connection could allow an authenticated, remote attacker to execute arbitrary cod...

2026-05-07
CVE-2026-20033
7.4
Cisco Nexus

A vulnerability in Cisco Nexus 9000 Series Fabric Switches in ACI mode could allow an unauthenticated, adjacent attacker to cause a denial of service...

2026-02-26
CVE-2026-20014
7.7
Cisco Secure Firewall

A vulnerability in the IKEv2 feature of Cisco Secure Firewall ASA Software and Cisco Secure FTD Software could allow an authenticated, remote attacker...

2026-03-05
CVE-2026-20012
Analyzed
8.6
Microsoft IOS Software

A vulnerability in the Internet Key Exchange version 2 (IKEv2) feature of Cisco IOS Software, Cisco IOS XE Software, Cisco Secure Firewall Adaptive Se...

2026-03-26
CVE-2026-20010
7.4
Cisco NX

A vulnerability in the Link Layer Discovery Protocol (LLDP) feature of Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to cause...

2026-02-26
CVE-2026-2001
Analyzed
8.8
WordPress is vulnerable

The WowRevenue plugin for WordPress is vulnerable to unauthorized plugin installation due to a missing capability check in the 'Notice::install_activa...

2026-02-17
CVE-2026-20002
Analyzed
8.1
Cisco Secure FMC

A vulnerability in the web-based management interface of Cisco Secure FMC Software could allow an authenticated, remote attacker to conduct SQL inject...

2026-03-05
CVE-2026-1995
Analyzed
7.8
AMD id_service

IDrive’s id_service

2026-03-26
CVE-2026-1994
Analyzed
9.8
WordPress is vulnerable

The s2Member plugin for WordPress allows unauthenticated privilege escalation via account takeover due to insufficient identity validation during pass...

2026-02-20
CVE-2026-1993
8.8
Google Analytics Dashboard

The ExactMetrics – Google Analytics Dashboard for WordPress plugin is vulnerable to Improper Privilege Management in versions 7

2026-03-12
CVE-2026-1992
8.8
Google Analytics Dashboard

The ExactMetrics – Google Analytics Dashboard for WordPress plugin is vulnerable to Insecure Direct Object Reference in versions 8

2026-03-12
CVE-2026-1988
Analyzed
7.5
WordPress is vulnerable

The Flexi Product Slider and Grid for WooCommerce plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 1

2026-02-14
CVE-2026-1961
8
Foreman Multiple Products

A flaw was found in Foreman

2026-03-28
CVE-2026-1952
Analyzed
9.8
Delta Electronics AS320T

Delta Electronics AS320T has denial of service via the undocumented subfunction vulnerability.

2026-04-24
CVE-2026-1951
Analyzed
9.8
Delta Electronics AS320T

Delta Electronics AS320T has no checking of the length of the buffer with the directory name vulnerability.

2026-04-24
CVE-2026-1950
Analyzed
9.8
Delta Electronics AS320T

Delta Electronics AS320T has No checking of the length of the buffer with the file name vulnerability.

2026-04-24
CVE-2026-1949
Analyzed
9.8
Delta Electronics AS320T

Delta Electronics AS320T has incorrect calculation of the buffer size on the stack in the GET/PUT request handler of the web service.

2026-04-24
CVE-2026-1947
7.5
WordPress plugin for

The NEX-Forms – Ultimate Forms Plugin for WordPress plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and...

2026-03-17
CVE-2026-1945
7.2
WordPress is vulnerable

The WPBookit plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'wpb_user_name' and 'wpb_user_email' parameters in all versions...

2026-03-04
CVE-2026-1937
Analyzed
9.8
WordPress is vulnerable

The YayMail plugin for WordPress is vulnerable to privilege escalation due to a missing capability check on an AJAX action, allowing authenticated att...

2026-02-18
CVE-2026-1931
7.2
WordPress is vulnerable

The Rent Fetch plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'keyword' parameter in all versions up to, and including, 0

2026-02-18