17426 Total CVEs
8726 AI Analyzed
264 CISA KEV
3526 Critical
All Vendors
Showing 8151-8200 of 17426 CVEs Page 164 of 349
CVE-2026-0613
7.5
Librarian Multiple Products

The Librarian contains an internal port scanning vulnerability, facilitated by the `web_fetch` tool, which can be used with SSRF-style behavior to per...

2026-01-18
CVE-2026-0612
Analyzed
7.5
Librarian Multiple Products

The Librarian contains a information leakage vulnerability through the `web_fetch` tool, which can be used to retrieve arbitrary external content prov...

2026-01-18
CVE-2026-0611
Analyzed
9.8
Spacelabs Healthcare Sentinel

Spacelabs Healthcare Sentinel contains an unauthenticated RCE vulnerability via a deprecated .NET Remoting HTTP channel, allowing attackers to write w...

2026-06-03
CVE-2026-0607
7.3
Unknown Multiple Products

A flaw has been found in code-projects Online Music Site 1

2026-01-06
CVE-2026-0606
7.3
Unknown Multiple Products

A vulnerability was detected in code-projects Online Music Site 1

2026-01-06
CVE-2026-0605
7.3
Unknown Multiple Products

A security vulnerability has been detected in code-projects Online Music Site 1

2026-01-06
CVE-2026-0603
8.3
Unknown Multiple Products

A flaw was found in Hibernate

2026-01-23
CVE-2026-0599
Analyzed
7.5
Unknown Multiple Products

A vulnerability in huggingface/text-generation-inference version 3

2026-02-02
CVE-2026-0596
Analyzed
9.6
MLflow MLflow

MLflow is vulnerable to command injection when serving models with `enable_mlserver=True`. Shell metacharacters in the `model_uri` allow for arbitrary...

2026-04-01
CVE-2026-0592
7.3
Unknown Multiple Products

A security flaw has been discovered in code-projects Online Product Reservation System 1

2026-01-06
CVE-2026-0589
7.3
Unknown Multiple Products

A vulnerability was found in code-projects Online Product Reservation System 1

2026-01-06
CVE-2026-0585
7.3
Unknown Multiple Products

A security vulnerability has been detected in code-projects Online Product Reservation System 1

2026-01-06
CVE-2026-0583
7.3
Unknown Multiple Products

A security flaw has been discovered in code-projects Online Product Reservation System 1

2026-01-06
CVE-2026-0579
Analyzed
7.3
Unknown Multiple Products

A vulnerability was found in code-projects Online Product Reservation System 1

2026-01-05
CVE-2026-0578
Analyzed
7.3
Unknown Multiple Products

A vulnerability has been found in code-projects Online Product Reservation System 1

2026-01-05
CVE-2026-0576
Analyzed
7.3
Unknown Multiple Products

A vulnerability was detected in code-projects Online Product Reservation System 1

2026-01-04
CVE-2026-0575
Analyzed
7.3
Unknown Multiple Products

A security vulnerability has been detected in code-projects Online Product Reservation System 1

2026-01-04
CVE-2026-0570
Analyzed
7.3
Unknown Multiple Products

A vulnerability was found in code-projects Online Music Site 1

2026-01-03
CVE-2026-0569
Analyzed
7.3
Unknown Multiple Products

A vulnerability has been found in code-projects Online Music Site 1

2026-01-03
CVE-2026-0568
Analyzed
7.3
Unknown Multiple Products

A flaw has been found in code-projects Online Music Site 1

2026-01-03
CVE-2026-0567
Analyzed
7.3
Unknown Multiple Products

A vulnerability was detected in code-projects Content Management System 1

2026-01-03
CVE-2026-0565
Analyzed
7.3
Unknown Multiple Products

A weakness has been identified in code-projects Content Management System 1

2026-01-03
CVE-2026-0562
8.3
Unknown Multiple Products

A critical security vulnerability in parisneo/lollms versions up to 2

2026-03-30
CVE-2026-0560
7.5
Unknown Multiple Products

A Server-Side Request Forgery (SSRF) vulnerability exists in parisneo/lollms versions prior to 2

2026-03-30
CVE-2026-0558
7.5
Unknown Multiple Products

A vulnerability in parisneo/lollms, up to and including version 2

2026-03-30
CVE-2026-0546
7.3
Unknown Multiple Products

A vulnerability was determined in code-projects Content Management System 1

2026-01-02
CVE-2026-0545
Analyzed
9.1
Arch MLflow

An authentication bypass in MLflow's FastAPI job endpoints allows unauthenticated attackers to submit and execute jobs, potentially leading to remote...

2026-04-04
CVE-2026-0544
7.3
Unknown Multiple Products

A security flaw has been discovered in itsourcecode School Management System 1

2026-01-01
CVE-2026-0538
Analyzed
7.8
Intel 3ds Max

A maliciously crafted GIF file, when parsed through Autodesk 3ds Max, can force an Out-of-Bounds Write vulnerability

2026-02-05
CVE-2026-0537
Analyzed
7.8
Intel 3ds Max

A maliciously crafted RGB file, when parsed through Autodesk 3ds Max, can force a Memory Corruption vulnerability

2026-02-05
CVE-2026-0536
Analyzed
7.8
Unknown 3ds Max

A maliciously crafted GIF file, when parsed through Autodesk 3ds Max, can cause a Stack-Based Buffer Overflow vulnerability

2026-02-05
CVE-2026-0532
Analyzed
8.6
Google Multiple Products

External Control of File Name or Path (CWE-73) combined with Server-Side Request Forgery (CWE-918) can allow an attacker to cause arbitrary file discl...

2026-01-15
CVE-2026-0511
8.1
SAP Multiple Products

SAP Fiori App Intercompany Balance Reconciliation does not perform necessary authorization checks for an authenticated user, resulting in escalation o...

2026-01-13
CVE-2026-0509
Analyzed
9.6
SAP NetWeaver Application

SAP NetWeaver AS ABAP allows low-privileged authenticated users to execute Remote Function Calls (RFC) without proper S_RFC authorization, impacting s...

2026-02-10
CVE-2026-0508
Analyzed
7.3
Intel BusinessObjects Business Intelligence Platform

The SAP BusinessObjects Business Intelligence Platform allows an authenticated attacker with high privileges to insert malicious URL within the applic...

2026-02-10
CVE-2026-0507
Analyzed
8.4
SAP Multiple Products

Due to an OS Command Injection vulnerability in SAP Application Server for ABAP and SAP NetWeaver RFCSDK, an authenticated attacker with administrativ...

2026-01-13
CVE-2026-0506
8.1
Unknown Multiple Products

Due to a Missing Authorization Check vulnerability in Application Server ABAP and ABAP Platform, an authenticated attacker could misuse an RFC functio...

2026-01-13
CVE-2026-0501
Analyzed
9.9
SAP Multiple Products

Due to insufficient input validation in SAP S/4HANA Private Cloud and On-Premise (Financials General Ledger), an authenticated user could execute craf...

2026-01-13
CVE-2026-0500
Analyzed
9.6
SAP Multiple Products

Due to the usage of vulnerable third party component in SAP Wily Introscope Enterprise Manager (WorkStation), an unauthenticated attacker could create...

2026-01-13
CVE-2026-0498
Analyzed
9.1
SAP Multiple Products

SAP S/4HANA (Private Cloud and On-Premise) allows an attacker with admin privileges to exploit a vulnerability in the function module exposed via RFC....

2026-01-13
CVE-2026-0492
Analyzed
8.8
SAP Multiple Products

SAP HANA database is vulnerable to privilege escalation allowing an attacker with valid credentials of any user to switch to another user potentially...

2026-01-13
CVE-2026-0491
Analyzed
9.1
SAP Multiple Products

SAP Landscape Transformation allows an attacker with admin privileges to exploit a vulnerability in the function module exposed via RFC. This flaw ena...

2026-01-13
CVE-2026-0490
Analyzed
7.5
SAP BusinessObjects BI

SAP BusinessObjects BI Platform allows an unauthenticated attacker to craft a specific network request to the trusted endpoint that breaks the authent...

2026-02-10
CVE-2026-0488
Analyzed
9.9
SAP CRM and

A flaw in SAP CRM and S/4HANA allows authenticated attackers to exploit generic function module calls to execute arbitrary SQL statements, leading to...

2026-02-10
CVE-2026-0485
7.5
SAP BusinessObjects BI

SAP BusinessObjects BI Platform allows an unauthenticated attacker to send specially crafted requests that could cause the Content Management Server (...

2026-02-10
CVE-2026-0300
KEV
9.5
Palo Alto PAN-OS

Palo Alto Networks PAN-OS Out-of-bounds Write Vulnerability - Active in CISA KEV catalog.

2026-05-07
CVE-2026-0257
KEV Analyzed
9.5
Palo Alto PAN-OS

Palo Alto Networks PAN-OS Authentication Bypass Vulnerability - Active in CISA KEV catalog.

2026-05-30
CVE-2026-0204
8
Unknown Multiple Products

A vulnerability in the access control mechanism of SonicOS may allow certain management interface functions to be accessible under specific conditions

2026-04-30
CVE-2026-0164
Analyzed
8.8
Google Modem

In Modem, there is a possible out of bounds write due to a missing bounds check

2026-06-18
CVE-2026-0162
Analyzed
8.8
Google AudioSdpParser

In ParsePayloads of AudioSdpParser

2026-06-18