17426 Total CVEs
8726 AI Analyzed
264 CISA KEV
3526 Critical
All Vendors
Showing 2701-2750 of 17426 CVEs Page 55 of 349
CVE-2026-44060
Analyzed
7.5
Unknown Multiple Products

An integer underflow in dsi_writeinit() in Netatalk 1

2026-05-22
CVE-2026-44058
Analyzed
7.2
Netatalk Multiple Products

An authentication bypass vulnerability in Netatalk 2

2026-05-22
CVE-2026-44055
Analyzed
7.5
Unknown Multiple Products

A logic error involving bitwise OR operations in Netatalk 3

2026-05-22
CVE-2026-44053
Analyzed
7.4
LG Multiple Products

Netatalk 1

2026-05-22
CVE-2026-44052
Analyzed
7.5
Netatalk Multiple Products

Netatalk 2

2026-05-22
CVE-2026-44051
Analyzed
8.1
Unknown Multiple Products

In Netatalk 3

2026-05-21
CVE-2026-44050
Analyzed
9.9
Netatalk Netatalk

Netatalk contains a heap-based buffer overflow vulnerability within the `cnid` daemon's `comm_rcv()` function.

2026-05-21
CVE-2026-44049
Analyzed
7.5
Unknown Multiple Products

An out-of-bounds write due to improper null termination in convert_charset() in Netatalk 2

2026-05-22
CVE-2026-44048
Analyzed
8.8
Unknown Multiple Products

In Netatalk 2

2026-05-21
CVE-2026-44047
Analyzed
8.8
MySQL cnid backend

In Netatalk 3

2026-05-21
CVE-2026-4404
Analyzed
9.4
Harbor Harbor (GoHarbor)

GoHarbor Harbor version 2.15.0 and below uses hard-coded credentials, allowing unauthenticated attackers to gain administrative access to the web user...

2026-03-24
CVE-2026-44028
7.5
Nix Multiple Products

An issue was discovered in Nix before 2

2026-05-05
CVE-2026-44016
Analyzed
8.2
Docling-project Docling

Docling simplifies document processing by parsing diverse formats and providing integrations with the generative AI ecosystem

2026-06-25
CVE-2026-44015
8.5
Nginx UI is

Nginx UI is a web user interface for the Nginx web server

2026-05-13
CVE-2026-44009
Analyzed
9.8
Unknown vm2

The vm2 sandbox library for Node.js is vulnerable to sandbox escape, potentially allowing arbitrary command execution on the host system.

2026-05-14
CVE-2026-44008
Analyzed
9.8
Node.js (vm2) vm2

The vm2 sandbox for Node.js is vulnerable to an array species batch neutralization flaw, allowing attackers to escape the sandbox and execute arbitrar...

2026-05-14
CVE-2026-44006
Analyzed
10
Node.js (vm2) vm2

The vm2 sandbox for Node.js is vulnerable to prototype access, allowing attackers to reach arbitrary prototypes and escape the sandbox.

2026-05-14
CVE-2026-44005
Analyzed
10
Node.js (vm2) vm2

The vm2 sandbox for Node.js is vulnerable to prototype pollution, allowing sandboxed code to mutate host-realm objects and escape the environment.

2026-05-14
CVE-2026-44001
8.6
Unknown Multiple Products

vm2 is an open source vm/sandbox for Node

2026-05-14
CVE-2026-43999
Analyzed
9.9
Node.js (vm2) vm2

The vm2 sandbox for Node.js contains a bypass in its builtin allowlist, enabling unauthorized access to restricted modules and arbitrary code executio...

2026-05-14
CVE-2026-43998
8.5
Unknown Multiple Products

vm2 is an open source vm/sandbox for Node

2026-05-14
CVE-2026-43997
Analyzed
10
Node.js (vm2) vm2

The vm2 sandbox for Node.js is vulnerable to a host object escape, allowing attackers to access the host environment by leveraging native symbols.

2026-05-14
CVE-2026-43993
8.2
Unknown Multiple Products

JunoClaw is an agentic AI platform built on Juno Network

2026-05-13
CVE-2026-43992
Analyzed
9.8
Unknown Multiple Products

JunoClaw is an agentic AI platform built on Juno Network. Prior to 0.x.y-security-1, every MCP write tool (send_tokens, execute_contract, instantiate_...

2026-05-13
CVE-2026-43991
8.4
Unknown Multiple Products

JunoClaw is an agentic AI platform built on Juno Network

2026-05-13
CVE-2026-43990
8.4
Unknown Multiple Products

JunoClaw is an agentic AI platform built on Juno Network

2026-05-13
CVE-2026-43989
8.5
Unknown Multiple Products

JunoClaw is an agentic AI platform built on Juno Network

2026-05-13
CVE-2026-43986
Analyzed
9.9
Tautulli Tautulli

A server-side request forgery (SSRF) vulnerability in Tautulli allows unauthenticated attackers to force the server to fetch arbitrary URLs.

2026-06-05
CVE-2026-43985
Analyzed
8.8
Tautulli Tautulli

Tautulli is a Python based monitoring and tracking tool for Plex Media Server

2026-06-05
CVE-2026-43984
Analyzed
8.9
Tautulli Tautulli

Tautulli is a Python based monitoring and tracking tool for Plex Media Server

2026-06-05
CVE-2026-43983
8.1
Pocket Multiple Products

Pocket ID is an OIDC provider that allows users to authenticate with their passkeys to your services

2026-05-14
CVE-2026-4396
8.3
Reporting Multiple Products

Improper certificate validation in Devolutions Hub Reporting Service 2025

2026-03-19
CVE-2026-43948
Analyzed
9.9
Unknown Multiple Products

wger is a free, open-source workout and fitness manager. Prior to 2.6, the reset_user_password and gym_permissions_user_edit views in wger perform a g...

2026-05-13
CVE-2026-43944
Analyzed
9.6
Unknown electerm

The electerm client is vulnerable to local code execution via maliciously crafted deep links or command-line options.

2026-05-09
CVE-2026-43943
7.8
Unknown Multiple Products

electerm is an open-sourced terminal/ssh/sftp/telnet/serialport/RDP/VNC/Spice/ftp client

2026-05-09
CVE-2026-43941
Analyzed
9.6
Electerm Electerm

A vulnerability in Electerm's terminal hyperlink handler allows arbitrary code execution or local file access when a user clicks a malicious link.

2026-05-08
CVE-2026-43940
8.4
Unknown Multiple Products

electerm is an open-sourced terminal/ssh/sftp/telnet/serialport/RDP/VNC/Spice/ftp client

2026-05-08
CVE-2026-43938
8.1
Unknown Multiple Products

YetAnotherForum

2026-05-13
CVE-2026-43937
8.8
Unknown Multiple Products

YetAnotherForum

2026-05-13
CVE-2026-43929
8.2
AWS Multiple Products

ssrfcheck is a library that checks if a string contains a potential SSRF attack

2026-05-13
CVE-2026-43921
Analyzed
8.9
FOSSBilling FOSSBilling

FOSSBilling is a free, open-source billing and client management system

2026-07-07
CVE-2026-43918
Analyzed
8.7
FOSSBilling FOSSBilling

FOSSBilling is a free, open-source billing and client management system

2026-07-07
CVE-2026-43914
7.3
Oracle determining whether

Vaultwarden is a Bitwarden-compatible server written in Rust

2026-05-12
CVE-2026-43913
8.1
Unknown Multiple Products

Vaultwarden is a Bitwarden-compatible server written in Rust

2026-05-12
CVE-2026-43912
8.7
Unknown Multiple Products

Vaultwarden is a Bitwarden-compatible server written in Rust

2026-05-12
CVE-2026-43909
8.8
Unknown Multiple Products

OpenImageIO is a toolset for reading, writing, and manipulating image files of any image file format relevant to VFX / animation

2026-05-15
CVE-2026-43908
8.8
Unknown Multiple Products

OpenImageIO is a toolset for reading, writing, and manipulating image files of any image file format relevant to VFX / animation

2026-05-15
CVE-2026-43907
8.3
Signal that no

OpenImageIO is a toolset for reading, writing, and manipulating image files of any image file format relevant to VFX / animation

2026-05-15
CVE-2026-43906
7.8
Unknown Multiple Products

OpenImageIO is a toolset for reading, writing, and manipulating image files of any image file format relevant to VFX / animation

2026-05-16
CVE-2026-43905
7.8
Unknown Multiple Products

OpenImageIO is a toolset for reading, writing, and manipulating image files of any image file format relevant to VFX / animation

2026-05-16