17426 Total CVEs
8726 AI Analyzed
264 CISA KEV
3526 Critical
All Vendors
Showing 4701-4750 of 17426 CVEs Page 95 of 349
CVE-2026-32811
8.2
Unknown Multiple Products

Heimdall is a cloud native Identity Aware Proxy and Access Control Decision service

2026-03-20
CVE-2026-32808
8.1
Unknown Multiple Products

pyLoad is a free and open-source download manager written in Python

2026-03-20
CVE-2026-32775
7.4
Unknown Multiple Products

libexif through 0

2026-03-17
CVE-2026-32767
Analyzed
9.8
Arch endpoint bypasses

SiYuan is a personal knowledge management system. Versions 3.6.0 and below contain an authorization bypass vulnerability in the /api/search/fullTextSe...

2026-03-20
CVE-2026-32763
8.2
MySQL and SQLite

Kysely is a type-safe TypeScript SQL query builder

2026-03-20
CVE-2026-32756
8.8
HP scripts

Admidio is an open-source user management solution

2026-03-20
CVE-2026-32754
Analyzed
9.3
HP Multiple Products

FreeScout is a free help desk and shared inbox built with PHP's Laravel framework. Versions 1.8.208 and below are vulnerable to Stored Cross-Site Scri...

2026-03-20
CVE-2026-3275
8.8
Tenda F453

A weakness has been identified in Tenda F453 1

2026-02-27
CVE-2026-32749
7.6
Arch Multiple Products

SiYuan is a personal knowledge management system

2026-03-20
CVE-2026-32746
Analyzed
9.8
GNU inetutils (telnetd)

GNU inetutils telnetd through version 2.7 contains an out-of-bounds write vulnerability in the LINEMODE SLC suboption handler due to missing buffer ch...

2026-03-14
CVE-2026-32741
Analyzed
7.1
Unknown Multiple Products

libheif is a HEIF and AVIF file format decoder and encoder

2026-05-20
CVE-2026-32740
Analyzed
8.8
Unknown Multiple Products

libheif is a HEIF and AVIF file format decoder and encoder

2026-05-20
CVE-2026-3274
8.8
Tenda F453

A security flaw has been discovered in Tenda F453 1

2026-02-27
CVE-2026-32734
7.1
Unknown Multiple Products

baserCMS is a website development framework

2026-03-31
CVE-2026-32731
Analyzed
9.9
Canon @apostrophecms/import-export

A "Zip Slip" path traversal vulnerability in the ApostropheCMS import-export module allows authenticated users with content modification permissions t...

2026-03-19
CVE-2026-32730
8.1
MongoDB query that

ApostropheCMS is an open-source content management framework

2026-03-19
CVE-2026-3273
8.8
Tenda F453

A vulnerability was identified in Tenda F453 1

2026-02-27
CVE-2026-32729
8.1
Unknown Multiple Products

Runtipi is a personal homeserver orchestrator

2026-03-17
CVE-2026-32728
7.6
Parse Multiple Products

Parse Server is an open source backend that can be deployed to any infrastructure that can run Node

2026-03-20
CVE-2026-32727
8.1
Unknown Multiple Products

SciTokens is a reference library for generating and using SciTokens

2026-03-31
CVE-2026-32726
8.1
Unknown Multiple Products

SciTokens C++ is a minimal library for creating and using SciTokens from C or C++

2026-04-01
CVE-2026-32725
8.3
Unknown Multiple Products

SciTokens C++ is a minimal library for creating and using SciTokens from C or C++

2026-04-01
CVE-2026-32721
8.6
Unknown Multiple Products

LuCI is the OpenWrt Configuration Interface

2026-03-20
CVE-2026-3272
8.8
Tenda F453

A vulnerability was determined in Tenda F453 1

2026-02-27
CVE-2026-32716
8.1
Unknown Multiple Products

SciTokens is a reference library for generating and using SciTokens

2026-03-31
CVE-2026-32714
Analyzed
9.8
SciTokens SciTokens (Python library)

SciTokens is vulnerable to SQL Injection in its KeyCache class due to the unsafe use of Python's str.format() for query construction, allowing attacke...

2026-03-31
CVE-2026-32711
7.8
Unknown Multiple Products

pydicom is a pure Python package for working with DICOM files

2026-03-20
CVE-2026-32710
8.5
MariaDB server

MariaDB server is a community developed fork of MySQL server

2026-03-21
CVE-2026-3271
8.8
Tenda F453

A vulnerability was found in Tenda F453 1

2026-02-27
CVE-2026-32708
7.8
Unknown Multiple Products

PX4 autopilot is a flight control solution for drones

2026-03-17
CVE-2026-32706
7.1
Unknown Multiple Products

PX4 autopilot is a flight control solution for drones

2026-03-17
CVE-2026-32703
Analyzed
9
OpenProject OpenProject

The OpenProject Repositories module is vulnerable to a persisted Cross-Site Scripting (XSS) attack due to improper sanitation of filenames within repo...

2026-03-19
CVE-2026-32701
Analyzed
7.5
Builder.io Qwik

Qwik is a performance-focused JavaScript framework

2026-03-22
CVE-2026-32698
Analyzed
9.1
Intel OpenProject

OpenProject is vulnerable to an SQL injection via custom field names, which can be leveraged to manipulate git checkout paths and achieve arbitrary Ru...

2026-03-19
CVE-2026-32693
8.8
Unknown Multiple Products

In Juju from version 3

2026-03-19
CVE-2026-32692
7.6
Vault secrets Multiple Products

An authorization bypass vulnerability in the Vault secrets back-end implementation of Juju versions 3

2026-03-19
CVE-2026-32680
7.8
Microsoft Multiple Products

The installer of RATOC RAID Monitoring Manager for Windows allows to customize the installation folder

2026-03-26
CVE-2026-32679
7.8
Microsoft Multiple Products

The installers of LiveOn Meet Client for Windows (Downloader5Installer

2026-04-23
CVE-2026-32673
8.7
Unknown Multiple Products

A vulnerability exists in BIG-IP scripted monitors that may allow an authenticated attacker with the Resource Administrator or Administrator role to e...

2026-05-14
CVE-2026-32669
8.8
Buffalo Wi

Code injection vulnerability exists in BUFFALO Wi-Fi router products

2026-03-27
CVE-2026-32666
Analyzed
7.5
Automated Logic WebCTRL

WebCTRL systems that communicate over BACnet inherit the protocol's lack of network layer authentication

2026-03-22
CVE-2026-32663
7.3
Unknown Multiple Products

The WebSocket backend uses charging station identifiers to uniquely associate sessions but allows multiple endpoints to connect using the same session...

2026-03-22
CVE-2026-32661
Analyzed
9.8
Unknown GUARDIANWALL MailSuite/Mail Security Cloud

A stack-based buffer overflow exists in GUARDIANWALL MailSuite and Mail Security Cloud, potentially allowing arbitrary code execution.

2026-05-14
CVE-2026-32658
8
Dell Automation Platform

Dell Automation Platform versions prior to 2

2026-05-12
CVE-2026-32650
7.5
Anviz Multiple Products

Anviz CrossChex Standard is vulnerable when an attacker manipulates the TDS7 PreLogin to disable encryption, causing database credentials to be sent...

2026-04-18
CVE-2026-32647
7.8
Nginx Open Source

NGINX Open Source and NGINX Plus have a vulnerability in the ngx_http_mp4_module module, which might allow an attacker to trigger a buffer over-read o...

2026-03-25
CVE-2026-32646
Analyzed
7.5
Unknown the affected software

A specific administrative endpoint is accessible without proper authentication, exposing device management functions

2026-04-04
CVE-2026-32644
Analyzed
9.8
Specific firmware Multiple Products

Specific firmware versions of Milesight AIOT cameras use SSL certificates with default private keys.

2026-04-28
CVE-2026-32643
8.7
Certificate Multiple Products

A vulnerability exists in BIG-IP and BIG-IQ systems where a highly privileged, authenticated attacker with at least the Certificate Manager role can m...

2026-05-14
CVE-2026-32634
8.1
Unknown Multiple Products

Glances is an open-source system cross-platform monitoring tool

2026-03-19