17426 Total CVEs
8726 AI Analyzed
264 CISA KEV
3526 Critical
All Vendors
Showing 4101-4150 of 17426 CVEs Page 83 of 349
CVE-2026-34872
Analyzed
9.1
Mbed Mbed TLS / TF-PSA-Crypto

Improper input validation in Mbed TLS FFDH allows attackers to force shared secrets into a small set of values, compromising protocols that rely on co...

2026-04-02
CVE-2026-34856
7.3
Unknown Multiple Products

UAF vulnerability in the communication module

2026-04-13
CVE-2026-34853
7.7
LBS Multiple Products

Permission bypass vulnerability in the LBS module

2026-04-13
CVE-2026-3485
Analyzed
9.8
D-Link DIR

An OS command injection vulnerability in the D-Link DIR-868L SSDP service allows unauthenticated remote attackers to execute arbitrary commands via th...

2026-03-04
CVE-2026-34841
Analyzed
9.8
Arch Bruno IDE

A supply chain attack on the Bruno IDE introduced a malicious dependency, resulting in the deployment of a cross-platform Remote Access Trojan (RAT).

2026-04-07
CVE-2026-34840
Analyzed
8.1
Unknown Multiple Products

OneUptime is an open-source monitoring and observability platform

2026-04-03
CVE-2026-34838
Analyzed
9.9
Microsoft Group-Office

A vulnerability in the AbstractSettingsCollection model of Group-Office leads to insecure deserialization, allowing authenticated attackers to achieve...

2026-04-03
CVE-2026-3483
7.8
Unknown DSM before

An exposed dangerous method in Ivanti DSM before version 2026

2026-03-11
CVE-2026-34829
Analyzed
7.5
Unknown Multiple Products

Rack is a modular Ruby web server interface

2026-04-03
CVE-2026-34827
Analyzed
7.5
Unknown Multiple Products

Rack is a modular Ruby web server interface

2026-04-03
CVE-2026-34824
Analyzed
7.5
Google Mesop

Mesop is a Python-based UI framework that allows users to build web applications

2026-04-04
CVE-2026-34797
Analyzed
8.8
Firewall Multiple Products

Endian Firewall version 3

2026-04-03
CVE-2026-34796
Analyzed
8.8
Firewall Multiple Products

Endian Firewall version 3

2026-04-03
CVE-2026-34795
Analyzed
8.8
Firewall Multiple Products

Endian Firewall version 3

2026-04-03
CVE-2026-34794
Analyzed
8.8
Firewall Multiple Products

Endian Firewall version 3

2026-04-03
CVE-2026-34793
Analyzed
8.8
Firewall Multiple Products

Endian Firewall version 3

2026-04-03
CVE-2026-34792
Analyzed
8.8
Firewall Multiple Products

Endian Firewall version 3

2026-04-03
CVE-2026-34791
Analyzed
8.8
Firewall Multiple Products

Endian Firewall version 3

2026-04-03
CVE-2026-34785
Analyzed
7.5
Unknown Multiple Products

Rack is a modular Ruby web server interface

2026-04-03
CVE-2026-34784
7.5
Parse Multiple Products

Parse Server is an open source backend that can be deployed to any infrastructure that can run Node

2026-04-02
CVE-2026-34783
8.1
Ferret Multiple Products

Ferret is a declarative system for working with web data

2026-04-07
CVE-2026-34780
Analyzed
8.3
Electron Electron Framework

Electron is a framework for writing cross-platform desktop applications using JavaScript, HTML and CSS

2026-04-04
CVE-2026-3478
7.2
WordPress is vulnerable

The Content Syndication Toolkit plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 1

2026-03-22
CVE-2026-34774
Analyzed
8.1
Electron Electron Framework

Electron is a framework for writing cross-platform desktop applications using JavaScript, HTML and CSS

2026-04-04
CVE-2026-34771
Analyzed
7.5
Electron Electron Framework

Electron is a framework for writing cross-platform desktop applications using JavaScript, HTML and CSS

2026-04-04
CVE-2026-34770
Analyzed
7
Electron Electron

Electron is a framework for writing cross-platform desktop applications using JavaScript, HTML and CSS

2026-04-05
CVE-2026-34769
Analyzed
7.7
Electron Electron Framework

Electron is a framework for writing cross-platform desktop applications using JavaScript, HTML and CSS

2026-04-04
CVE-2026-3476
7.8
Unknown Multiple Products

A Code Injection vulnerability affecting SOLIDWORKS Desktop from Release 2025 through Release 2026 could allow an attacker to execute arbitrary code o...

2026-03-17
CVE-2026-34758
Analyzed
9.1
SAP OneUptime

Unauthenticated access to notification and phone management endpoints in OneUptime allows attackers to abuse communication services and perform unauth...

2026-04-03
CVE-2026-34752
Analyzed
7.5
Haraka Haraka SMTP Server

Haraka is a Node

2026-04-04
CVE-2026-34751
Analyzed
9.1
Unknown Multiple Products

Payload is a free and open source headless content management system. Prior to version 3.79.1 in @payloadcms/graphql and payload, a vulnerability in t...

2026-04-02
CVE-2026-34748
8.7
Unknown Multiple Products

Payload is a free and open source headless content management system

2026-04-02
CVE-2026-34747
8.5
Unknown Multiple Products

Payload is a free and open source headless content management system

2026-04-02
CVE-2026-34746
7.7
Unknown Multiple Products

Payload is a free and open source headless content management system

2026-04-02
CVE-2026-34745
Analyzed
9.1
Fireshare Multiple Products

Fireshare facilitates self-hosted media and link sharing. Prior to version 1.5.3, the fix for CVE-2026-33645 was applied to the authenticated /api/upl...

2026-04-03
CVE-2026-34742
Analyzed
8.1
Go MCP SDK

The Go MCP SDK used Go's standard encoding/json

2026-04-04
CVE-2026-34734
7.8
F5 is software

HDF5 is software for managing data

2026-04-10
CVE-2026-34731
7.5
HP endpoint in

WWBN AVideo is an open source video platform

2026-04-01
CVE-2026-34728
Analyzed
8.7
HP Multiple Products

phpMyFAQ is an open source FAQ web application

2026-04-03
CVE-2026-34727
7.4
Unknown Multiple Products

Vikunja is an open-source self-hosted task management platform

2026-04-12
CVE-2026-34725
Analyzed
8.2
Unknown Multiple Products

DbGate is cross-platform database manager

2026-04-03
CVE-2026-34717
Analyzed
9.9
Intel OpenProject

A SQL injection vulnerability in OpenProject's reporting module allows attackers to execute unauthorized database queries via unparameterized user inp...

2026-04-03
CVE-2026-34714
Analyzed
9.2
Vim Vim

Vim is vulnerable to arbitrary code execution when opening a crafted file due to a %{expr} injection flaw in the tabpanel component.

2026-03-31
CVE-2026-34686
8.7
Adobe Commerce versions

Adobe Commerce versions 2

2026-05-13
CVE-2026-34660
Analyzed
9.3
Adobe Connect versions

Adobe Connect versions 2025.9.15, 2025.8.157 and earlier are affected by an Incorrect Authorization vulnerability that could result in arbitrary code...

2026-05-13
CVE-2026-34659
Analyzed
9.6
Adobe Connect versions

Adobe Connect versions 2025.9.15, 2025.8.157 and earlier are affected by a Deserialization of Untrusted Data vulnerability that could result in arbitr...

2026-05-13
CVE-2026-34653
8.7
Adobe Commerce versions

Adobe Commerce versions 2

2026-05-13
CVE-2026-3464
8.8
WordPress is vulnerable

The WP Customer Area plugin for WordPress is vulnerable to arbitrary file read and deletion due to insufficient file path validation in the 'ajax_atta...

2026-04-18
CVE-2026-34632
8.2
Adobe Photoshop Installer

Adobe Photoshop Installer was affected by an Uncontrolled Search Path Element vulnerability that could have resulted in arbitrary code execution in th...

2026-04-16
CVE-2026-34622
8.6
Adobe Multiple Products

Acrobat Reader versions 26

2026-04-15