17426 Total CVEs
8726 AI Analyzed
264 CISA KEV
3526 Critical
All Vendors
Showing 4551-4600 of 17426 CVEs Page 92 of 349
CVE-2026-33282
7.5
Ella Multiple Products

Ella Core is a 5G core designed for private networks

2026-03-24
CVE-2026-33278
Analyzed
9.8
Unknown Unbound

NLnet Labs Unbound contains a DNSSEC validation flaw that can be exploited to cause a denial-of-service or potentially remote code execution.

2026-05-21
CVE-2026-33277
8.8
Acer prior to

An OS command Injection issue exists in LogonTracer prior to v2

2026-04-27
CVE-2026-33266
7.5
Apache OpenMeetings

Use of Hard-coded Cryptographic Key vulnerability in Apache OpenMeetings

2026-04-11
CVE-2026-3326
Analyzed
8.6
WordPress Xstore WordPress theme

The Xstore WordPress theme before 9

2026-06-11
CVE-2026-33250
7.5
Infor Multiple Products

Freeciv21 is a free open source, turn-based, empire-building strategy game

2026-03-24
CVE-2026-33243
Analyzed
8.2
Unknown Multiple Products

barebox is a bootloader

2026-03-21
CVE-2026-33242
7.5
Unknown Multiple Products

Salvo is a Rust web framework

2026-03-24
CVE-2026-3324
8.2
ManageEngine Log360 versions

Zohocorp ManageEngine Log360 versions 13000 through 13013 are vulnerable to authentication bypass on certain actions due to improper filter configurat...

2026-04-17
CVE-2026-33236
8.1
Arch and development

NLTK (Natural Language Toolkit) is a suite of open source Python modules, data sets, and tutorials supporting research and development in Natural Lang...

2026-03-21
CVE-2026-33233
Analyzed
7.6
Intel Workflow Automation Platform

AutoGPT is a workflow automation platform for creating, deploying, and managing continuous artificial intelligence agents

2026-05-19
CVE-2026-33232
Analyzed
7.5
Intel Workflow Automation Platform

AutoGPT is a workflow automation platform for creating, deploying, and managing continuous artificial intelligence agents

2026-05-19
CVE-2026-33231
Analyzed
7.5
F5 Natural Language Toolkit (NLTK)

NLTK (Natural Language Toolkit) is a suite of open source Python modules, data sets, and tutorials supporting research and development in Natural Lang...

2026-03-22
CVE-2026-3323
7.5
Infor Multiple Products

An unsecured configuration interface on affected devices allows unauthenticated remote attackers to access sensitive information, including hashed cre...

2026-04-29
CVE-2026-33226
8.7
Kubernetes APIs

Budibase is a low code platform for creating internal tools, workflows, and admin panels

2026-03-21
CVE-2026-33216
8.6
Performance Multiple Products

NATS-Server is a High-Performance server for NATS

2026-03-26
CVE-2026-33211
Analyzed
9.6
Tekton Pipelines Multiple Products

Tekton Pipelines project provides k8s-style resources for declaring CI/CD-style pipelines. Starting in version 1.0.0 and prior to versions 1.0.1, 1.3....

2026-03-24
CVE-2026-33204
7.5
HP Multiple Products

SimpleJWT is a simple JSON web token library written in PHP

2026-03-22
CVE-2026-33203
Analyzed
7.5
Intel SiYuan Knowledge Management System

SiYuan is a personal knowledge management system

2026-03-22
CVE-2026-33202
Analyzed
9.1
Active Multiple Products

Active Storage allows users to attach cloud and local files in Rails applications. Prior to versions 8.1.2.1, 8.0.4.1, and 7.2.3.1, Active Storage's `...

2026-03-25
CVE-2026-33195
Analyzed
9.8
Active Multiple Products

Active Storage allows users to attach cloud and local files in Rails applications. Prior to versions 8.1.2.1, 8.0.4.1, and 7.2.3.1, Active Storage's `...

2026-03-25
CVE-2026-33186
Analyzed
9.1
Google gRPC-Go

gRPC-Go versions prior to 1.79.3 are vulnerable to an authorization bypass due to improper input validation of HTTP/2 :path pseudo-headers, allowing a...

2026-03-21
CVE-2026-33184
Analyzed
7.5
LG core-rs-albatross

nimiq/core-rs-albatross is a Rust implementation of the Nimiq Proof-of-Stake protocol based on the Albatross consensus algorithm

2026-04-04
CVE-2026-33180
7.5
Infor Multiple Products

HAPI FHIR is a complete implementation of the HL7 FHIR standard for healthcare interoperability in Java

2026-03-22
CVE-2026-33176
7.5
Active Multiple Products

Active Support is a toolkit of support libraries and Ruby core extensions extracted from the Rails framework

2026-03-25
CVE-2026-33175
Analyzed
8.8
Intel OAuthenticator

OAuthenticator is software that allows OAuth2 identity providers to be plugged in and used with JupyterHub

2026-04-04
CVE-2026-33174
7.5
Active Multiple Products

Active Storage allows users to attach cloud and local files in Rails applications

2026-03-25
CVE-2026-33172
8.7
SVG Multiple Products

Statamic is a Laravel and Git powered content management system (CMS)

2026-03-21
CVE-2026-33166
8.6
Allure Multiple Products

Allure 2 is the version 2

2026-03-21
CVE-2026-33156
Analyzed
7.8
Unknown Multiple Products

ScreenToGif is a screen recording tool

2026-03-21
CVE-2026-33154
Analyzed
7.5
Dynaconf Dynaconf

dynaconf is a configuration management tool for Python

2026-03-22
CVE-2026-33150
7.8
Linux FUSE

libfuse is the reference implementation of the Linux FUSE

2026-03-21
CVE-2026-33149
8.1
Tandoor Multiple Products

Tandoor Recipes is an application for managing recipes, planning meals, and building shopping lists

2026-03-28
CVE-2026-33147
7.3
Unknown Multiple Products

GMT is an open source collection of command-line tools for manipulating geographic and Cartesian data sets

2026-03-22
CVE-2026-33142
Analyzed
8.1
Unknown Multiple Products

OneUptime is a solution for monitoring and managing online services

2026-03-21
CVE-2026-33136
Analyzed
9.3
HP endpoint

A Reflected XSS vulnerability in WeGIA's listar_memorandos_ativos.php endpoint allows attackers to inject malicious JavaScript via the sccd GET parame...

2026-03-21
CVE-2026-33135
Analyzed
9.3
HP endpoint

WeGIA versions 3.6.6 and below are vulnerable to Reflected Cross-Site Scripting (XSS) in the novo_memorandoo.php endpoint, allowing arbitrary JavaScri...

2026-03-21
CVE-2026-33134
Analyzed
9.3
HP endpoint

WeGIA versions 3.6.5 and below contain an authenticated SQL injection vulnerability in the restaurar_produto.php endpoint, potentially leading to full...

2026-03-21
CVE-2026-33133
7.2
Unknown Multiple Products

WeGIA is a web manager for charitable institutions

2026-03-22
CVE-2026-33131
7.4
NodeRequestUrl Multiple Products

H3 is a minimal H(TTP) framework

2026-03-22
CVE-2026-33128
Analyzed
7.5
Unjs H3

H3 is a minimal H(TTP) framework

2026-03-22
CVE-2026-33125
7.1
Unknown Multiple Products

Frigate is a network video recorder (NVR) with realtime local object detection for IP cameras

2026-03-22
CVE-2026-33120
8.8
Unknown Multiple Products

Untrusted pointer dereference in SQL Server allows an authorized attacker to execute code over a network

2026-04-15
CVE-2026-33117
Analyzed
9.1
Microsoft SDK allows

Improper authentication in Azure SDK allows an unauthorized attacker to bypass a security feature over a network.

2026-05-13
CVE-2026-33115
8.4
Microsoft Office Word

Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally

2026-04-15
CVE-2026-33114
8.4
Microsoft Office Word

Untrusted pointer dereference in Microsoft Office Word allows an unauthorized attacker to execute code locally

2026-04-15
CVE-2026-33112
8.8
Microsoft Office SharePoint

Deserialization of untrusted data in Microsoft Office SharePoint allows an authorized attacker to execute code over a network

2026-05-13
CVE-2026-33111
7.5
Microsoft Edge

Improper neutralization of special elements used in a command ('command injection') in Copilot Chat (Microsoft Edge) allows an unauthorized attacker t...

2026-05-09
CVE-2026-33110
8.8
Microsoft Office SharePoint

Deserialization of untrusted data in Microsoft Office SharePoint allows an authorized attacker to execute code over a network

2026-05-13
CVE-2026-33109
Analyzed
9.9
Microsoft Cassandra allows

Improper access control in Azure Managed Instance for Apache Cassandra allows an authorized attacker to execute arbitrary code.

2026-05-08