17426 Total CVEs
8726 AI Analyzed
264 CISA KEV
3526 Critical
All Vendors
Showing 4001-4050 of 17426 CVEs Page 81 of 349
CVE-2026-35265
Analyzed
8.8
Oracle Identity Manager

Vulnerability in the Identity Manager product of Oracle Fusion Middleware (component: Security)

2026-06-18
CVE-2026-35263
Analyzed
9.9
Oracle Fusion Middleware

A critical vulnerability in Oracle WebLogic Server allows low-privileged attackers to gain full system control via HTTP.

2026-06-18
CVE-2026-35262
Analyzed
8.3
Oracle Data Integrator

Vulnerability in the Oracle Data Integrator product of Oracle Fusion Middleware (component: Market Place)

2026-06-20
CVE-2026-35259
Analyzed
8.8
Oracle WebLogic Server

Vulnerability in the WebLogic Server product of Oracle Fusion Middleware (component: Console)

2026-06-18
CVE-2026-35258
Analyzed
8.7
Oracle WebLogic Server (Fusion Middleware)

Vulnerability in the WebLogic Server product of Oracle Fusion Middleware (component: Console)

2026-06-18
CVE-2026-35251
7.5
Oracle VM VirtualBox

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core)

2026-04-23
CVE-2026-35246
7.5
Oracle VM VirtualBox

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core)

2026-04-23
CVE-2026-35245
7.5
Oracle VM VirtualBox

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core)

2026-04-23
CVE-2026-35243
7.8
Oracle Application Development

Vulnerability in the Oracle Application Development Framework (ADF) product of Oracle Fusion Middleware (component: ADF Faces)

2026-04-22
CVE-2026-35242
7.5
Oracle VM VirtualBox

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core)

2026-04-23
CVE-2026-3524
Analyzed
8.8
Mattermost Plugin Legal Hold

Mattermost Plugin Legal Hold versions <=1

2026-04-06
CVE-2026-35231
7.5
Oracle Financial Services

Vulnerability in the Oracle Financial Services Transaction Filtering product of Oracle Financial Services Applications (component: User Interface)

2026-04-23
CVE-2026-35230
7.5
Oracle VM VirtualBox

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core)

2026-04-22
CVE-2026-35229
7.5
Oracle Database Server

Vulnerability in the Java VM component of Oracle Database Server

2026-04-22
CVE-2026-35228
Analyzed
8.7
Oracle MCP Server

Vulnerability in the Oracle MCP Server Helper Tool product of Oracle Open Source Projects (component: helper tool)

2026-05-05
CVE-2026-35218
Analyzed
8.7
Budibase Budibase

Budibase is an open-source low-code platform

2026-04-04
CVE-2026-35216
Analyzed
9
Budibase Budibase

Budibase versions prior to 3.33.4 contain an unauthenticated Remote Code Execution (RCE) flaw. Attackers can trigger Bash-based automations via a publ...

2026-04-04
CVE-2026-35215
7.5
Unknown Multiple Products

Firebird is an open-source relational database management system

2026-04-18
CVE-2026-35214
Analyzed
8.7
Budibase Budibase

Budibase is an open-source low-code platform

2026-04-04
CVE-2026-35209
7.5
Unknown Multiple Products

defu is software that allows uers to assign default properties recursively

2026-04-07
CVE-2026-35203
7.5
Unknown Multiple Products

ZLMediaKit is a streaming media service framework

2026-04-07
CVE-2026-35196
8.8
HP endpoint within

Chamilo LMS is an open-source learning management system

2026-04-15
CVE-2026-35194
8.1
Apache Flink

Code injection in SQL code generation in Apache Flink 1

2026-05-16
CVE-2026-3519
8.4
Unknown ADC Products

OS Command Injection Remote Code Execution Vulnerability in API in Progress ADC Products allows an authenticated attacker with “VS Administration” per...

2026-04-21
CVE-2026-35187
7.7
Oracle Multiple Products

pyLoad is a free and open-source download manager written in Python

2026-04-07
CVE-2026-35182
8.8
HP Multiple Products

Brave CMS is an open-source CMS

2026-04-07
CVE-2026-3518
8.4
Unknown ADC Products

OS Command Injection Remote Code Execution Vulnerability in API in Progress ADC Products allows an authenticated attacker with “All” permissions to ex...

2026-04-21
CVE-2026-35174
Analyzed
9.1
HP with database

A path traversal vulnerability in the Chyrp Lite administration console allows authenticated users to access arbitrary files and achieve remote code e...

2026-04-07
CVE-2026-35172
7.5
Redis and storage

Distribution is a toolkit to pack, ship, store, and deliver container content

2026-04-07
CVE-2026-35171
Analyzed
9.8
Kedro Kedro

Kedro is vulnerable to remote code execution due to unvalidated logging configuration paths that permit arbitrary callable instantiation.

2026-04-07
CVE-2026-3517
8.4
Unknown ADC Products

OS Command Injection Remote Code Execution Vulnerability in API in Progress ADC Products allows an authenticated attacker with “Geo Administration” pe...

2026-04-21
CVE-2026-35169
8.7
Arch and Imaging

LORIS (Longitudinal Online Research and Imaging System) is a self-hosted web application that provides data- and project-management for neuroimaging r...

2026-04-09
CVE-2026-35168
Analyzed
8.8
MySQL server

OpenSTAManager is an open source management software for technical assistance and invoicing

2026-04-03
CVE-2026-35164
8.8
HP within the

Brave CMS is an open-source CMS

2026-04-07
CVE-2026-3511
8.6
XMLUtils Multiple Products

Improper Restriction of XML External Entity Reference vulnerability in XMLUtils

2026-03-20
CVE-2026-35093
8.8
Infor Multiple Products

A flaw was found in libinput

2026-04-02
CVE-2026-35092
7.5
Corosync Multiple Products

A flaw was found in Corosync

2026-04-02
CVE-2026-35091
8.2
Corosync Multiple Products

A flaw was found in Corosync

2026-04-02
CVE-2026-3509
7.5
Unknown Multiple Products

An unauthenticated remote attacker may be able to control the format string of messages processed by the Audit Log of the CODESYS Control runtime syst...

2026-03-24
CVE-2026-35085
Analyzed
8.8
GDV serverconfig

A remote attacker with user privileges can exploit a stack buffer overflow in gdv-serverconfig to gain full system access as root

2026-06-04
CVE-2026-35084
Analyzed
8.8
Unknown dali-devconfig

A remote attacker with user privileges can exploit a stack buffer overflow in dali-devconfig to gain full system access as root

2026-06-04
CVE-2026-35083
Analyzed
8.8
Unknown Multiple Products

A remote attacker with user privileges can exploit a stack buffer overflow to gain full system access as root

2026-06-04
CVE-2026-35082
Analyzed
8.8
Unknown ugw-logread

The ugw-logread method allows a remote attacker with user privileges to access arbitrary local files due to insufficient validation of user-supplied i...

2026-06-04
CVE-2026-35075
Analyzed
9.8
Unknown Multiple Products

An unauthenticated remote attacker can recover a hardcoded password from a firmware image to gain full device access.

2026-06-04
CVE-2026-35071
8.2
Dell PowerScale InsightIQ

Dell PowerScale InsightIQ, versions 6

2026-05-13
CVE-2026-35065
Analyzed
8.8
Dell PowerFlex Manager

Dell PowerFlex Manager, version(s) [Versions], contain(s) a Missing Authentication for Critical Function vulnerability

2026-06-18
CVE-2026-35064
7.5
SenseLive Multiple Products

A vulnerability in SenseLive X3050’s management ecosystem allows unauthenticated discovery of deployed units through the vendor’s management protocol,...

2026-04-24
CVE-2026-35056
8.8
XenForo Multiple Products

XenForo before 2

2026-04-01
CVE-2026-35050
Analyzed
9.1
Unknown text-generation-webui

The text-generation-webui application allows arbitrary Python file overwriting via extension settings, leading to remote code execution.

2026-04-07
CVE-2026-35045
8.1
Tandoor Multiple Products

Tandoor Recipes is an application for managing recipes, planning meals, and building shopping lists

2026-04-07