17426 Total CVEs
8726 AI Analyzed
264 CISA KEV
3526 Critical
All Vendors
Showing 2351-2400 of 17426 CVEs Page 48 of 349
CVE-2026-45910
Analyzed
7.8
Linux kernel

In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Fix race condition in QP timer handlers I encontered the following war...

2026-06-01
CVE-2026-45909
Analyzed
7.8
Linux kernel

In the Linux kernel, the following vulnerability has been resolved: clk: mediatek: Drop __initconst from gates Since commit 8ceff24a754a ("clk: medi...

2026-06-01
CVE-2026-45894
Analyzed
7.8
Intel VT-d

In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: Clear Present bit before tearing down PASID entry The Intel VT-d Sca...

2026-06-01
CVE-2026-45878
Analyzed
7.8
AMD kernel

In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: Fix watch_id bounds checking in debug address watch v2 The address w...

2026-06-01
CVE-2026-45862
Analyzed
7.8
Linux kernel

In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: Flush cache for PASID table before using it When writing the address...

2026-06-01
CVE-2026-45861
Analyzed
7.8
Linux kernel

In the Linux kernel, the following vulnerability has been resolved: gfs2: Fix slab-use-after-free in qd_put Commit a475c5dd16e5 ("gfs2: Free quota d...

2026-06-01
CVE-2026-45852
Analyzed
7.8
Linux kernel

In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Fix double free in rxe_srq_from_init In rxe_srq_from_init(), the queue...

2026-06-01
CVE-2026-4585
Analyzed
9.8
Tiandy Easy7 Integrated Management Platform

Tiandy Easy7 Integrated Management Platform contains an OS command injection vulnerability in its Configuration Handler, allowing remote attackers to...

2026-03-24
CVE-2026-45843
Analyzed
8.2
Linux kernel

In the Linux kernel, the following vulnerability has been resolved: slip: bound decode() reads against the compressed packet length slhc_uncompress(...

2026-06-01
CVE-2026-45833
Analyzed
8.8
ChromaDB ChromaDB Python

A code injection vulnerability in version 0

2026-06-17
CVE-2026-45832
Analyzed
8.8
ChromaDB ChromaDB

All V1 collection-level endpoints in ChromaDB's Python project pass None for the tenant and database to the authorization layer, allowing attackers to...

2026-06-17
CVE-2026-45831
Analyzed
8.8
ChromaDB ChromaDB Python project

The SimpleRBACAuthorizationProvider authorization provider in versions 0

2026-06-17
CVE-2026-45830
Analyzed
8.8
ChromaDB ChromaDB Python project

A lack of authorization validation in version 0

2026-06-17
CVE-2026-4581
7.3
HP of the

A weakness has been identified in code-projects Simple Laundry System 1

2026-03-24
CVE-2026-45807
Analyzed
7.7
Kestra Kestra

Kestra is an open-source, event-driven orchestration platform

2026-06-28
CVE-2026-4580
7.3
HP of the

A security flaw has been discovered in code-projects Simple Laundry System 1

2026-03-24
CVE-2026-4579
7.3
HP of the

A vulnerability was identified in code-projects Simple Laundry System 1

2026-03-23
CVE-2026-45748
Analyzed
9.8
Termix Termix

The Termix platform is vulnerable to persistent OS command injection via the tunnel connect endpoint due to improper input sanitization of host record...

2026-06-06
CVE-2026-45744
Analyzed
9.9
Termix Termix

The Termix platform contains an OS command injection vulnerability in the resolvePath endpoint, allowing authenticated users with an active session to...

2026-06-06
CVE-2026-45732
Analyzed
8.3
Unknown n8n

n8n is an open source workflow automation platform

2026-06-24
CVE-2026-45717
Analyzed
8.8
MongoDB datasource to

Budibase is an open-source low-code platform

2026-05-28
CVE-2026-45716
Analyzed
8.8
Unknown Multiple Products

Budibase is an open-source low-code platform

2026-05-28
CVE-2026-45697
Analyzed
9.8
Formie Craft CMS Plugin

The Formie plugin for Craft CMS is vulnerable to remote code execution due to improper evaluation of user-supplied Twig templates within hidden form f...

2026-05-30
CVE-2026-45689
Analyzed
9.1
Rocket.Chat Rocket.Chat

An unauthenticated attacker can inject MongoDB operators into the OAuth token endpoint to steal valid access tokens for arbitrary users, including adm...

2026-06-25
CVE-2026-45688
Analyzed
9.1
Rocket.Chat Rocket.Chat

An unauthenticated attacker can use NoSQL injection in the CAS login handler to bypass authentication and hijack active user sessions, including admin...

2026-06-25
CVE-2026-45687
Analyzed
8.5
Rocket.Chat Rocket.Chat

Rocket

2026-06-25
CVE-2026-45677
Analyzed
8.7
Rocket.Chat Rocket.Chat

Rocket

2026-06-25
CVE-2026-45675
Analyzed
8.1
Intel Multiple Products

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline

2026-05-16
CVE-2026-45674
Analyzed
8.7
Netty Netty

Netty is a network application framework for development of protocol servers and clients

2026-06-13
CVE-2026-45672
Analyzed
8.8
Intel Open WebUI

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline

2026-05-16
CVE-2026-45671
Analyzed
8
Intel Multiple Products

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline

2026-05-16
CVE-2026-4567
Analyzed
9.8
Tenda A15

A stack-based buffer overflow in the Tenda A15 UploadCfg function allows remote attackers to execute arbitrary code via a malicious File argument.

2026-03-23
CVE-2026-45665
Analyzed
8.1
Intel Multiple Products

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline

2026-05-16
CVE-2026-45663
Analyzed
9.9
Docker PaaS

Dokploy contains a command injection vulnerability in its Docker file upload functionality that allows authenticated users to execute arbitrary OS com...

2026-05-30
CVE-2026-45662
Analyzed
8.8
Docker logout

Dokploy is a free, self-hostable Platform as a Service (PaaS)

2026-05-30
CVE-2026-45661
Analyzed
9.9
Dokploy PaaS

A path traversal vulnerability in Dokploy allows authenticated users to write arbitrary files to the host or remote servers during application deploym...

2026-05-30
CVE-2026-4566
Analyzed
8.8
Belkin F9K1122

A flaw has been found in Belkin F9K1122 1

2026-03-23
CVE-2026-45659
KEV Analyzed
8.8
Microsoft Office SharePoint

Deserialization of untrusted data in Microsoft Office SharePoint allows an authorized attacker to execute code over a network

2026-05-27
CVE-2026-45657
Analyzed
9.8
Microsoft Windows Kernel

A use-after-free vulnerability in the Windows Kernel allows unauthenticated attackers to execute arbitrary code over the network.

2026-06-10
CVE-2026-4565
8.8
Tenda AC21

A vulnerability was detected in Tenda AC21 16

2026-03-23
CVE-2026-45648
Analyzed
8.8
Microsoft Active Directory Domain Services

Stack-based buffer overflow in Active Directory Domain Services allows an authorized attacker to execute code over a network

2026-06-10
CVE-2026-45641
Analyzed
8.4
Microsoft Windows Hyper-V

Out-of-bounds read in Windows Hyper-V allows an unauthorized attacker to execute code locally

2026-06-12
CVE-2026-45633
Analyzed
9.9
Docker PaaS

Dokploy contains a command injection vulnerability in the /docker-container-logs WebSocket endpoint that allows authenticated users to execute arbitra...

2026-05-30
CVE-2026-45632
Analyzed
9.9
Dokploy PaaS

A broken access control vulnerability in the Dokploy schedule router allows authenticated users to manage schedules belonging to other organizations,...

2026-05-30
CVE-2026-45631
Analyzed
10
Dokploy PaaS

A hardcoded authentication secret in Dokploy allows unauthenticated attackers to forge JWTs, gain administrative access, and execute commands on the h...

2026-05-30
CVE-2026-45629
Analyzed
9.9
Dokploy PaaS

An OS command injection vulnerability in the Dokploy /listen-deployment WebSocket endpoint allows authenticated users to execute arbitrary commands on...

2026-05-30
CVE-2026-45625
Analyzed
9.9
Arcane Docker Container Management Interface

Arcane's REST API fails to enforce admin-level authorization on Git repository management endpoints, allowing authenticated users to exfiltrate sensit...

2026-05-30
CVE-2026-4562
7.3
HP of the

A security flaw has been discovered in MacCMS 2025

2026-03-23
CVE-2026-45607
Analyzed
8.4
Microsoft Windows Hyper-V

Out-of-bounds read in Windows Hyper-V allows an unauthorized attacker to execute code locally

2026-06-12
CVE-2026-45584
Analyzed
8.1
Microsoft Defender allows

Heap-based buffer overflow in Microsoft Defender allows an unauthorized attacker to execute code over a network

2026-05-21