CVE Tracker
928 records · 6 CISA KEV
A structured, cross-referenced database of 928 vulnerability records. Each record links the official CVSS severity (NVD), EPSS exploitation-probability (FIRST.org) and CISA KEV status. Filter, sort and download. All values are sourced and attributed; we add no opinion or risk rating of our own.
Source data as of:
Source: NVD · EPSS (FIRST.org) · CISA KEV
How to read these values
- CVSS — CVSS (NVD): a 0–10 severity score for the vulnerability itself. Higher is a more severe flaw, but a high CVSS does not by itself mean a record should be acted on first.
- EPSS — EPSS (FIRST.org): an estimated probability (0–1) that the vulnerability will be exploited in the wild in the next 30 days. It is a likelihood signal, distinct from CVSS severity.
- CISA KEV — CISA KEV: a yes/no flag for whether CISA has recorded the vulnerability as known to be exploited. Listing and dates are published by CISA.
Signals derived mechanically from the official source fields below (CVSS vector, CWE, EPSS percentile, CISA KEV, references). They restate facts — they are not a Quanteta risk rating, ranking or recommendation.
Filter & Sort
Showing 928 of 928 records
All records
| CVE ID | CVSS | Severity | EPSS | KEV | Signals | Affected vendors | Published |
|---|---|---|---|---|---|---|---|
| CVE-2022-26258 | 9.8 v3.1 | CRITICAL | 0.8110 | Yes | CISA KEVEPSS highNetworkNo privilegesNo user interactionOS Command Injection | dlink | 2022-03-28 |
| CVE-2021-42237 | 9.8 v3.1 | CRITICAL | 0.9790 | Yes | CISA KEVEPSS highNetworkNo privilegesNo user interactionInsecure Deserialization | sitecore | 2021-11-05 |
| CVE-2021-25296 | 8.8 v3.1 | HIGH | 0.7154 | Yes | CISA KEVEPSS highNetworkNo user interaction | nagios | 2021-02-15 |
| CVE-2021-25297 | 8.8 v3.1 | HIGH | 0.5874 | Yes | CISA KEVEPSS highNetworkNo user interactionOS Command Injection | nagios | 2021-02-15 |
| CVE-2021-25298 | 8.8 v3.1 | HIGH | 0.7520 | Yes | CISA KEVEPSS highNetworkNo user interactionOS Command Injection | nagios | 2021-02-15 |
| CVE-2023-38950 | 7.5 v3.1 | HIGH | 0.8488 | Yes | CISA KEVEPSS highNetworkNo privilegesNo user interactionPath Traversal | zkteco | 2023-08-03 |
| CVE-2026-54769 | 10.0 v3.1 | CRITICAL | — | — | NetworkNo privilegesNo user interactionCode InjectionVendor advisory ref | — | 2026-07-10 |
| CVE-2026-56291 | 10.0 v4.0 | CRITICAL | — | — | NetworkNo privilegesNo user interactionUnrestricted Upload | — | 2026-07-09 |
| CVE-2026-59726 | 10.0 v3.1 | CRITICAL | — | — | NetworkNo privilegesNo user interactionOS Command InjectionMissing AuthenticationVendor advisory ref | — | 2026-07-09 |
| CVE-2026-54782 | 10.0 v3.1 | CRITICAL | 0.0025 | — | NetworkNo privilegesNo user interactionVendor advisory ref | — | 2026-07-08 |
| CVE-2026-48316 | 10.0 v3.1 | CRITICAL | 0.0140 | — | NetworkNo privilegesNo user interactionImproper Input ValidationVendor advisory ref | adobe | 2026-07-06 |
| CVE-2026-50746 | 10.0 v3.1 | CRITICAL | 0.0083 | — | NetworkNo privilegesNo user interactionVendor advisory ref | ui | 2026-07-02 |
| CVE-2026-50086 | 10.0 v3.1 | CRITICAL | 0.0022 | — | NetworkNo privilegesNo user interactionVendor advisory ref | aqara | 2026-06-12 |
| CVE-2026-46595 | 10.0 v3.1 | CRITICAL | 0.0044 | — | NetworkNo privilegesNo user interactionIncorrect AuthorizationVendor advisory ref | golang | 2026-05-22 |
| CVE-2026-59827 | 9.9 v3.1 | CRITICAL | — | — | NetworkNo user interactionInsecure DeserializationVendor advisory ref | — | 2026-07-09 |
| CVE-2026-50747 | 9.9 v3.1 | CRITICAL | 0.0024 | — | NetworkNo user interactionSQL InjectionVendor advisory ref | ui | 2026-07-02 |
| CVE-2026-50748 | 9.9 v3.1 | CRITICAL | 0.0079 | — | NetworkNo user interactionImproper Input ValidationVendor advisory ref | ui | 2026-07-02 |
| CVE-2026-54402 | 9.9 v3.1 | CRITICAL | 0.0079 | — | NetworkNo user interactionImproper Input ValidationCommand InjectionVendor advisory ref | ui | 2026-07-02 |
| CVE-2026-44774 | 9.9 v3.1 | CRITICAL | 0.0046 | — | NetworkNo user interactionVendor advisory ref | traefik | 2026-05-15 |
| CVE-2025-62718 | 9.9 v3.1 | CRITICAL | 0.0119 | — | NetworkNo privilegesNo user interactionSSRFVendor advisory ref | axios | 2026-04-09 |
| CVE-2026-14894 | 9.8 v3.1 | CRITICAL | — | — | NetworkNo privilegesNo user interactionUnrestricted UploadVendor advisory ref | — | 2026-07-10 |
| CVE-2026-12116 | 9.8 v3.1 | CRITICAL | — | — | NetworkNo privilegesNo user interactionVendor advisory ref | — | 2026-07-09 |
| CVE-2026-14245 | 9.8 v3.1 | CRITICAL | 0.0059 | — | NetworkNo privilegesNo user interactionMissing AuthorizationVendor advisory ref | — | 2026-07-09 |
| CVE-2026-15158 | 9.8 v3.1 | CRITICAL | 0.0100 | — | NetworkNo privilegesNo user interactionUnrestricted UploadVendor advisory ref | — | 2026-07-09 |
| CVE-2026-58123 | 9.8 v3.1 | CRITICAL | — | — | NetworkNo privilegesNo user interactionMissing AuthenticationVendor advisory ref | — | 2026-07-09 |
| CVE-2026-5955 | 9.8 v3.1 | CRITICAL | 0.0044 | — | NetworkNo privilegesNo user interactionSQL Injection | — | 2026-07-09 |
| CVE-2026-14454 | 9.8 v3.1 | CRITICAL | 0.0019 | — | NetworkNo privilegesNo user interactionVendor advisory ref | — | 2026-07-08 |
| CVE-2026-44024 | 9.8 v3.1 | CRITICAL | 0.0111 | — | NetworkNo privilegesNo user interactionPath TraversalVendor advisory ref | — | 2026-07-08 |
| CVE-2026-52200 | 9.8 v3.1 | CRITICAL | 0.0024 | — | NetworkNo privilegesNo user interactionCode Injection | — | 2026-07-08 |
| CVE-2026-8307 | 9.8 v3.1 | CRITICAL | 0.0027 | — | NetworkNo privilegesNo user interactionSQL Injection | — | 2026-07-08 |
| CVE-2026-13019 | 9.8 v3.1 | CRITICAL | 0.0041 | — | NetworkNo privilegesNo user interaction | esri | 2026-07-07 |
| CVE-2026-14739 | 9.8 v3.1 | CRITICAL | 0.0040 | — | NetworkNo privilegesNo user interactionOut-of-bounds WriteVendor advisory ref | — | 2026-07-07 |
| CVE-2026-37270 | 9.8 v3.1 | CRITICAL | 0.0021 | — | NetworkNo privilegesNo user interactionImproper AuthenticationHard-coded Credentials | — | 2026-07-07 |
| CVE-2026-37271 | 9.8 v3.1 | CRITICAL | 0.0020 | — | NetworkNo privilegesNo user interactionImproper Authentication | — | 2026-07-07 |
| CVE-2026-56140 | 9.8 v3.1 | CRITICAL | 0.0031 | — | NetworkNo privilegesNo user interactionImproper Input ValidationVendor advisory ref | apache | 2026-07-06 |
| CVE-2026-58025 | 9.8 v3.1 | CRITICAL | 0.0034 | — | NetworkNo privilegesNo user interactionCode InjectionInsecure Deserialization | mediawiki | 2026-07-01 |
| CVE-2026-7840 | 9.8 v3.1 | CRITICAL | 0.0144 | — | NetworkNo privilegesNo user interactionOut-of-bounds Write | uvnc | 2026-07-01 |
| CVE-2026-51843 | 9.8 v3.1 | CRITICAL | 0.0036 | — | NetworkNo privilegesNo user interactionStack Overflow | tenda | 2026-06-19 |
| CVE-2026-51844 | 9.8 v3.1 | CRITICAL | 0.0036 | — | NetworkNo privilegesNo user interactionStack Overflow | tenda | 2026-06-19 |
| CVE-2026-51845 | 9.8 v3.1 | CRITICAL | 0.0036 | — | NetworkNo privilegesNo user interactionStack Overflow | tenda | 2026-06-19 |
| CVE-2026-51846 | 9.8 v3.1 | CRITICAL | 0.0056 | — | NetworkNo privilegesNo user interactionStack Overflow | tenda | 2026-06-19 |
| CVE-2026-9862 | 9.8 v3.1 | CRITICAL | 0.0086 | — | NetworkNo privilegesNo user interactionOS Command InjectionVendor advisory ref | forta | 2026-06-15 |
| CVE-2026-49875 | 9.8 v3.1 | CRITICAL | 0.0049 | — | NetworkNo privilegesNo user interactionXXEVendor advisory ref | apache | 2026-06-12 |
| CVE-2026-43125 | 9.8 v3.1 | CRITICAL | 0.0043 | — | NetworkNo privilegesNo user interactionOut-of-bounds Write | linux | 2026-05-06 |
| CVE-2026-28780 | 9.8 v3.1 | CRITICAL | 0.0132 | — | NetworkNo privilegesNo user interactionHeap OverflowOut-of-bounds WriteVendor advisory ref | apache | 2026-05-05 |
| CVE-2026-24781 | 9.8 v3.1 | CRITICAL | 0.0115 | — | NetworkNo privilegesNo user interactionCode InjectionVendor advisory ref | vm2_project | 2026-05-04 |
| CVE-2026-33815 | 9.8 v3.1 | CRITICAL | 0.0060 | — | NetworkNo privilegesNo user interactionOut-of-bounds WriteVendor advisory ref | jackc | 2026-04-07 |
| CVE-2026-33816 | 9.8 v3.1 | CRITICAL | 0.0056 | — | NetworkNo privilegesNo user interactionOut-of-bounds WriteVendor advisory ref | jackc | 2026-04-07 |
| CVE-2026-29063 | 9.8 v3.1 | CRITICAL | 0.0098 | — | NetworkNo privilegesNo user interactionVendor advisory ref | immutable-js | 2026-03-06 |
| CVE-2020-26867 | 9.8 v3.1 | CRITICAL | 0.0372 | — | NetworkNo privilegesNo user interactionInsecure DeserializationVendor advisory ref | arcinfo | 2020-10-12 |
| CVE-2026-15062 | 9.6 v3.1 | CRITICAL | 0.0028 | — | NetworkNo user interactionSQL InjectionVendor advisory ref | — | 2026-07-08 |
| CVE-2026-15113 | 9.6 v3.1 | CRITICAL | 0.0016 | — | NetworkNo privilegesUse After FreeVendor advisory ref | 2026-07-08 | |
| CVE-2026-12294 | 9.6 v3.1 | CRITICAL | 0.0036 | — | NetworkNo privilegesVendor advisory ref | mozilla | 2026-06-16 |
| CVE-2026-12295 | 9.6 v3.1 | CRITICAL | 0.0039 | — | NetworkNo privilegesVendor advisory ref | mozilla | 2026-06-16 |
| CVE-2026-12296 | 9.6 v3.1 | CRITICAL | 0.0039 | — | NetworkNo privilegesVendor advisory ref | mozilla | 2026-06-16 |
| CVE-2026-12297 | 9.6 v3.1 | CRITICAL | 0.0039 | — | NetworkNo privilegesMemory CorruptionVendor advisory ref | mozilla | 2026-06-16 |
| CVE-2026-50084 | 9.6 v3.1 | CRITICAL | 0.0021 | — | NetworkNo user interactionMissing AuthorizationVendor advisory ref | aqara | 2026-06-12 |
| CVE-2026-39821 | 9.6 v3.1 | CRITICAL | 0.0048 | — | NetworkNo user interactionVendor advisory ref | golang | 2026-05-22 |
| CVE-2026-33211 | 9.6 v3.1 | CRITICAL | 0.0057 | — | NetworkNo user interactionPath TraversalVendor advisory ref | linuxfoundation | 2026-03-24 |
| CVE-2025-27462 | 9.4 v4.0 | CRITICAL | — | — | No privilegesNo user interactionVendor advisory ref | — | 2026-07-09 |
| CVE-2025-27463 | 9.4 v4.0 | CRITICAL | — | — | No privilegesNo user interactionVendor advisory ref | — | 2026-07-09 |
| CVE-2025-27464 | 9.4 v4.0 | CRITICAL | — | — | No privilegesNo user interactionVendor advisory ref | — | 2026-07-09 |
| CVE-2025-58146 | 9.4 v4.0 | CRITICAL | — | — | No privilegesNo user interactionImproper Input ValidationVendor advisory ref | — | 2026-07-09 |
| CVE-2025-58151 | 9.4 v4.0 | CRITICAL | — | — | No privilegesNo user interactionRace Condition (TOCTOU)Vendor advisory ref | — | 2026-07-09 |
| CVE-2026-23556 | 9.4 v4.0 | CRITICAL | — | — | No privilegesNo user interactionVendor advisory ref | — | 2026-07-09 |
| CVE-2026-23559 | 9.4 v4.0 | CRITICAL | — | — | No privilegesNo user interactionVendor advisory ref | — | 2026-07-09 |
| CVE-2026-23560 | 9.4 v4.0 | CRITICAL | — | — | No privilegesNo user interactionVendor advisory ref | — | 2026-07-09 |
| CVE-2026-23561 | 9.4 v4.0 | CRITICAL | — | — | No privilegesNo user interactionVendor advisory ref | — | 2026-07-09 |
| CVE-2026-23562 | 9.4 v4.0 | CRITICAL | — | — | No privilegesNo user interactionVendor advisory ref | — | 2026-07-09 |
| CVE-2026-42486 | 9.4 v4.0 | CRITICAL | — | — | No privilegesNo user interactionVendor advisory ref | — | 2026-07-09 |
| CVE-2026-54760 | 9.3 v4.0 | CRITICAL | — | — | NetworkNo privilegesNo user interactionPath TraversalSQL InjectionVendor advisory ref | — | 2026-07-10 |
| CVE-2026-2342 | 9.3 v3.1 | CRITICAL | 0.0039 | — | NetworkNo privilegesXSS | — | 2026-07-09 |
| CVE-2026-47646 | 9.3 v3.1 | CRITICAL | 0.0045 | — | NetworkNo privilegesXSSVendor advisory ref | microsoft | 2026-07-09 |
| CVE-2026-54527 | 9.3 v4.0 | CRITICAL | 0.0028 | — | NetworkXSSVendor advisory ref | — | 2026-07-08 |
| CVE-2026-44990 | 9.3 v3.1 | CRITICAL | 0.0037 | — | NetworkNo privilegesXSSVendor advisory ref | — | 2026-06-12 |
| CVE-2026-50090 | 9.3 v3.1 | CRITICAL | 0.0025 | — | NetworkNo privilegesVendor advisory ref | aqara | 2026-06-12 |
| CVE-2026-55615 | 9.2 v4.0 | CRITICAL | — | — | NetworkNo privilegesNo user interactionInjectionVendor advisory ref | — | 2026-07-10 |
| CVE-2026-56292 | 9.2 v4.0 | CRITICAL | — | — | NetworkNo privilegesNo user interactionSQL Injection | — | 2026-07-09 |
| CVE-2026-14261 | 9.1 v3.1 | CRITICAL | — | — | NetworkNo privilegesNo user interactionVendor advisory ref | — | 2026-07-09 |
| CVE-2026-54003 | 9.1 v4.0 | CRITICAL | — | — | NetworkNo privilegesNo user interactionVendor advisory ref | — | 2026-07-09 |
| CVE-2026-58122 | 9.1 v3.1 | CRITICAL | — | — | NetworkNo privilegesNo user interactionVendor advisory ref | — | 2026-07-09 |
| CVE-2026-59826 | 9.1 v3.1 | CRITICAL | — | — | NetworkNo user interactionCode InjectionVendor advisory ref | — | 2026-07-09 |
| CVE-2026-9074 | 9.1 v3.1 | CRITICAL | 0.0044 | — | NetworkNo privilegesNo user interactionSQL Injection | — | 2026-07-08 |
| CVE-2026-14740 | 9.1 v3.1 | CRITICAL | 0.0041 | — | NetworkNo privilegesNo user interactionOut-of-bounds ReadVendor advisory ref | — | 2026-07-07 |
| CVE-2026-58473 | 9.1 v3.1 | CRITICAL | 0.0037 | — | NetworkNo privilegesNo user interactionMissing AuthenticationMissing AuthorizationVendor advisory ref | — | 2026-07-07 |
| CVE-2026-38971 | 9.1 v3.1 | CRITICAL | 0.0045 | — | NetworkNo privilegesNo user interactionOut-of-bounds Read | ardupilot | 2026-07-02 |
| CVE-2026-54400 | 9.1 v3.1 | CRITICAL | 0.0026 | — | NetworkNo user interactionVendor advisory ref | ui | 2026-07-02 |
| CVE-2026-7839 | 9.1 v3.1 | CRITICAL | 0.0037 | — | NetworkNo privilegesNo user interactionHard-coded Credentials | uvnc | 2026-07-01 |
| CVE-2026-50083 | 9.1 v3.1 | CRITICAL | 0.0025 | — | NetworkNo privilegesNo user interactionHard-coded CredentialsVendor advisory ref | aqara | 2026-06-12 |
| CVE-2026-50091 | 9.1 v3.1 | CRITICAL | 0.0025 | — | NetworkNo privilegesNo user interactionHard-coded CredentialsVendor advisory ref | aqara | 2026-06-12 |
| CVE-2026-39830 | 9.1 v3.1 | CRITICAL | 0.0053 | — | NetworkNo privilegesNo user interactionMemory CorruptionVendor advisory ref | golang | 2026-05-22 |
| CVE-2026-39832 | 9.1 v3.1 | CRITICAL | 0.0040 | — | NetworkNo privilegesNo user interactionInsecure DeserializationVendor advisory ref | golang | 2026-05-22 |
| CVE-2026-42508 | 9.1 v3.1 | CRITICAL | 0.0049 | — | NetworkNo privilegesNo user interactionVendor advisory ref | golang | 2026-05-22 |
| CVE-2026-33186 | 9.1 v3.1 | CRITICAL | 0.0156 | — | NetworkNo privilegesNo user interactionImproper AuthorizationVendor advisory ref | grpc | 2026-03-20 |
| CVE-2026-55116 | 9.0 v3.1 | CRITICAL | 0.0022 | — | NetworkNo privilegesNo user interactionVendor advisory ref | ui | 2026-07-02 |
| CVE-2026-3564 | 9.0 v3.1 | CRITICAL | 0.0036 | — | NetworkNo privilegesNo user interaction | — | 2026-03-17 |
| CVE-2026-15070 | 8.8 v3.1 | HIGH | — | — | NetworkNo privilegesCSRFVendor advisory ref | — | 2026-07-10 |
| CVE-2026-13492 | 8.8 v3.1 | HIGH | — | — | NetworkNo user interactionPath TraversalVendor advisory ref | — | 2026-07-09 |
| CVE-2026-4275 | 8.8 v3.1 | HIGH | — | — | NetworkNo privilegesCSRFVendor advisory ref | — | 2026-07-09 |
| CVE-2026-47826 | 8.8 v3.1 | HIGH | 0.0033 | — | NetworkNo privileges | — | 2026-07-09 |
| CVE-2026-47830 | 8.8 v3.1 | HIGH | 0.0010 | — | No user interaction | — | 2026-07-09 |
| CVE-2026-55207 | 8.8 v3.1 | HIGH | — | — | NetworkNo privilegesVendor advisory ref | — | 2026-07-09 |
| CVE-2026-5523 | 8.8 v3.1 | HIGH | 0.0031 | — | NetworkNo user interactionAuthorization Bypass (IDOR)Vendor advisory ref | — | 2026-07-09 |
| CVE-2026-58143 | 8.8 v3.1 | HIGH | — | — | NetworkNo privilegesCSRFVendor advisory ref | — | 2026-07-09 |
| CVE-2026-58378 | 8.8 v3.1 | HIGH | — | — | NetworkNo privileges | — | 2026-07-09 |
| CVE-2026-59148 | 8.8 v3.1 | HIGH | — | — | NetworkNo privilegesMissing AuthenticationCSRFIncorrect PermissionsVendor advisory ref | — | 2026-07-09 |
| CVE-2026-59734 | 8.8 v3.1 | HIGH | — | — | NetworkNo user interactionOS Command InjectionVendor advisory ref | — | 2026-07-09 |
| CVE-2026-10037 | 8.8 v3.1 | HIGH | 0.0012 | — | No user interactionImproper Input Validation | — | 2026-07-08 |
| CVE-2026-15067 | 8.8 v3.1 | HIGH | 0.0037 | — | NetworkNo user interactionSQL InjectionVendor advisory ref | — | 2026-07-08 |
| CVE-2026-15107 | 8.8 v3.1 | HIGH | 0.0020 | — | NetworkNo privilegesUse After FreeVendor advisory ref | 2026-07-08 | |
| CVE-2026-15110 | 8.8 v3.1 | HIGH | 0.0010 | — | NetworkNo privilegesUse After FreeVendor advisory ref | 2026-07-08 | |
| CVE-2026-15112 | 8.8 v3.1 | HIGH | 0.0019 | — | NetworkNo privilegesUse After FreeVendor advisory ref | 2026-07-08 | |
| CVE-2026-15114 | 8.8 v3.1 | HIGH | 0.0015 | — | NetworkNo privilegesOut-of-bounds ReadOut-of-bounds WriteVendor advisory ref | 2026-07-08 | |
| CVE-2026-15116 | 8.8 v3.1 | HIGH | 0.0020 | — | NetworkNo privilegesUse After FreeVendor advisory ref | 2026-07-08 | |
| CVE-2026-15118 | 8.8 v3.1 | HIGH | 0.0020 | — | NetworkNo privilegesUse After FreeVendor advisory ref | 2026-07-08 | |
| CVE-2026-15121 | 8.8 v3.1 | HIGH | 0.0020 | — | NetworkNo privilegesUse After FreeVendor advisory ref | 2026-07-08 | |
| CVE-2026-15123 | 8.8 v3.1 | HIGH | 0.0016 | — | NetworkNo privilegesHeap OverflowVendor advisory ref | 2026-07-08 | |
| CVE-2026-15125 | 8.8 v3.1 | HIGH | 0.0020 | — | NetworkNo privilegesIncorrect AuthorizationVendor advisory ref | 2026-07-08 | |
| CVE-2026-15126 | 8.8 v3.1 | HIGH | 0.0020 | — | NetworkNo privilegesUse After FreeVendor advisory ref | 2026-07-08 | |
| CVE-2026-15129 | 8.8 v3.1 | HIGH | 0.0018 | — | NetworkNo privilegesUse After FreeVendor advisory ref | 2026-07-08 | |
| CVE-2026-15132 | 8.8 v3.1 | HIGH | 0.0024 | — | NetworkNo privilegesVendor advisory ref | 2026-07-08 | |
| CVE-2026-15133 | 8.8 v3.1 | HIGH | 0.0022 | — | NetworkNo privilegesUse After FreeVendor advisory ref | 2026-07-08 | |
| CVE-2026-53951 | 8.8 v4.0 | HIGH | 0.0019 | — | No privilegesPath TraversalCode InjectionVendor advisory ref | — | 2026-07-08 |
| CVE-2026-56086 | 8.8 v3.1 | HIGH | 0.0029 | — | NetworkNo user interactionIncorrect Authorization | dell | 2026-07-08 |
| CVE-2026-58253 | 8.8 v3.1 | HIGH | 0.0039 | — | No privilegesNo user interactionImproper AuthenticationVendor advisory ref | — | 2026-07-08 |
| CVE-2026-59257 | 8.8 v3.1 | HIGH | 0.0031 | — | NetworkNo user interactionSQL InjectionVendor advisory ref | n8n | 2026-07-08 |
| CVE-2026-59723 | 8.8 v3.1 | HIGH | 0.0014 | — | No privilegesVendor advisory ref | — | 2026-07-08 |
| CVE-2026-59822 | 8.8 v4.0 | HIGH | 0.0029 | — | NetworkNo privilegesNo user interactionImproper AuthenticationMissing AuthenticationVendor advisory ref | — | 2026-07-08 |
| CVE-2026-14380 | 8.8 v3.1 | HIGH | 0.0024 | — | NetworkNo user interactionVendor advisory ref | — | 2026-07-07 |
| CVE-2026-34152 | 8.8 v3.1 | HIGH | 0.0037 | — | NetworkNo user interactionOS Command InjectionVendor advisory ref | — | 2026-07-07 |
| CVE-2026-48948 | 8.8 v3.1 | HIGH | 0.0025 | — | NetworkNo user interaction | joomla | 2026-07-07 |
| CVE-2026-48957 | 8.8 v3.1 | HIGH | 0.0025 | — | NetworkNo user interaction | joomla | 2026-07-07 |
| CVE-2026-48958 | 8.8 v3.1 | HIGH | 0.0027 | — | NetworkNo user interaction | joomla | 2026-07-07 |
| CVE-2026-14536 | 8.8 v3.1 | HIGH | 0.0028 | — | NetworkNo user interactionIncorrect AuthorizationVendor advisory ref | devolutions | 2026-07-06 |
| CVE-2026-54404 | 8.8 v3.1 | HIGH | 0.0024 | — | NetworkNo user interactionSQL InjectionVendor advisory ref | ui | 2026-07-02 |
| CVE-2026-13706 | 8.8 v3.1 | HIGH | 0.0028 | — | NetworkNo user interactionImproper Input Validation | mediawiki | 2026-07-01 |
| CVE-2026-7838 | 8.8 v3.1 | HIGH | 0.0140 | — | NetworkNo privilegesInteger OverflowOut-of-bounds Write | uvnc | 2026-07-01 |
| CVE-2026-8857 | 8.8 v3.1 | HIGH | 0.0027 | — | NetworkNo user interactionCode Injection | mediawiki | 2026-07-01 |
| CVE-2026-12856 | 8.8 v3.1 | HIGH | 0.0029 | — | NetworkNo privilegesVendor advisory ref | redhat | 2026-06-29 |
| CVE-2026-12289 | 8.8 v3.1 | HIGH | 0.0040 | — | NetworkNo privilegesPrivilege ManagementVendor advisory ref | mozilla | 2026-06-16 |
| CVE-2026-12291 | 8.8 v3.1 | HIGH | 0.0038 | — | NetworkNo privilegesUse After FreeVendor advisory ref | mozilla | 2026-06-16 |
| CVE-2026-52720 | 8.8 v3.1 | HIGH | 0.0053 | — | NetworkNo privilegesHeap Overflow | — | 2026-06-15 |
| CVE-2026-46152 | 8.8 v3.1 | HIGH | 0.0016 | — | No privilegesNo user interaction | linux | 2026-05-28 |
| CVE-2026-46166 | 8.8 v3.1 | HIGH | 0.0020 | — | No privilegesNo user interactionUse After Free | linux | 2026-05-28 |
| CVE-2026-27140 | 8.8 v3.1 | HIGH | 0.0066 | — | NetworkNo privilegesIncorrect AuthorizationVendor advisory ref | golang | 2026-04-08 |
| CVE-2025-66176 | 8.8 v3.1 | HIGH | 0.0049 | — | No privilegesNo user interactionStack OverflowVendor advisory ref | hikvision | 2026-01-13 |
| CVE-2025-66177 | 8.8 v3.1 | HIGH | 0.0032 | — | No privilegesNo user interactionStack OverflowVendor advisory ref | — | 2026-01-13 |
| CVE-2026-50180 | 8.7 v4.0 | HIGH | — | — | NetworkNo privilegesNo user interactionPath TraversalSQL InjectionVendor advisory ref | — | 2026-07-10 |
| CVE-2026-12593 | 8.7 v4.0 | HIGH | — | — | NetworkNo user interactionMissing Authorization | — | 2026-07-09 |
| CVE-2026-15308 | 8.7 v4.0 | HIGH | — | — | NetworkNo privilegesNo user interactionResource Exhaustion (DoS)Vendor advisory ref | — | 2026-07-09 |
| CVE-2026-14891 | 8.7 v3.1 | HIGH | 0.0032 | — | NetworkNo user interaction | — | 2026-07-08 |
| CVE-2026-55195 | 8.7 v4.0 | HIGH | 0.0032 | — | NetworkNo privilegesNo user interactionVendor advisory ref | — | 2026-07-08 |
| CVE-2026-55206 | 8.7 v4.0 | HIGH | 0.0032 | — | NetworkNo privilegesNo user interactionVendor advisory ref | — | 2026-07-08 |
| CVE-2026-55471 | 8.7 v4.0 | HIGH | 0.0031 | — | NetworkNo privilegesNo user interactionXXEVendor advisory ref | — | 2026-07-08 |
| CVE-2026-55596 | 8.7 v3.1 | HIGH | 0.0024 | — | NetworkXSSVendor advisory ref | — | 2026-07-08 |
| CVE-2026-57480 | 8.7 v4.0 | HIGH | 0.0034 | — | NetworkNo privilegesNo user interactionVendor advisory ref | — | 2026-07-08 |
| CVE-2026-60104 | 8.7 v3.1 | HIGH | 0.0019 | — | NetworkAuthorization Bypass (IDOR)Vendor advisory ref | — | 2026-07-08 |
| CVE-2026-6896 | 8.7 v3.1 | HIGH | 0.0035 | — | NetworkXSSVendor advisory ref | gitlab | 2026-07-08 |
| CVE-2026-53730 | 8.7 v4.0 | HIGH | 0.0024 | — | NetworkNo user interactionMissing AuthorizationVendor advisory ref | — | 2026-07-07 |
| CVE-2026-55635 | 8.7 v4.0 | HIGH | 0.0027 | — | NetworkNo user interactionSQL InjectionVendor advisory ref | — | 2026-07-07 |
| CVE-2026-44494 | 8.7 v3.1 | HIGH | 0.0104 | — | NetworkNo privilegesNo user interactionVendor advisory ref | axios | 2026-06-11 |
| CVE-2026-50644 | 8.6 v4.0 | HIGH | — | — | NetworkNo user interactionSQL Injection | — | 2026-07-09 |
| CVE-2026-55604 | 8.6 v3.1 | HIGH | — | — | NetworkNo privilegesNo user interactionAuthorization Bypass (IDOR)Vendor advisory ref | — | 2026-07-09 |
| CVE-2026-59833 | 8.6 v4.0 | HIGH | — | — | NetworkNo privilegesXSSCode InjectionVendor advisory ref | — | 2026-07-09 |
| CVE-2026-59855 | 8.6 v4.0 | HIGH | — | — | NetworkNo privilegesXSSVendor advisory ref | — | 2026-07-09 |
| CVE-2026-58192 | 8.6 v3.1 | HIGH | 0.0034 | — | NetworkNo privilegesNo user interactionPath TraversalVendor advisory ref | — | 2026-07-08 |
| CVE-2026-60105 | 8.6 v3.1 | HIGH | 0.0031 | — | NetworkNo privilegesNo user interactionSSRFVendor advisory ref | — | 2026-07-08 |
| CVE-2026-55418 | 8.6 v3.1 | HIGH | 0.0030 | — | NetworkNo privilegesNo user interactionAuthorization Bypass (IDOR)Vendor advisory ref | — | 2026-07-07 |
| CVE-2026-4249 | 8.6 v3.1 | HIGH | 0.0034 | — | NetworkNo privilegesNo user interactionVendor advisory ref | wso2 | 2026-07-06 |
| CVE-2026-54403 | 8.6 v3.1 | HIGH | 0.0048 | — | NetworkNo privilegesNo user interactionPath TraversalVendor advisory ref | ui | 2026-07-02 |
| CVE-2026-55117 | 8.6 v3.1 | HIGH | 0.0034 | — | NetworkNo privilegesNo user interactionPath TraversalVendor advisory ref | ui | 2026-07-02 |
| CVE-2026-50085 | 8.6 v3.1 | HIGH | 0.0028 | — | NetworkNo privilegesNo user interactionMissing AuthenticationVendor advisory ref | aqara | 2026-06-12 |
| CVE-2026-44492 | 8.6 v3.1 | HIGH | 0.0092 | — | NetworkNo privilegesNo user interactionSSRFVendor advisory ref | axios | 2026-06-11 |
| CVE-2025-61732 | 8.6 v3.1 | HIGH | 0.0047 | — | No privilegesCode InjectionVendor advisory ref | golang | 2026-02-05 |
| CVE-2026-54002 | 8.5 v4.0 | HIGH | — | — | NetworkXSSVendor advisory ref | — | 2026-07-09 |
| CVE-2026-55849 | 8.5 v4.0 | HIGH | 0.0016 | — | No privilegesOS Command InjectionVendor advisory ref | — | 2026-07-08 |
| CVE-2026-55999 | 8.5 v3.1 | HIGH | 0.0028 | — | NetworkNo user interactionHeap OverflowVendor advisory ref | x.org | 2026-07-08 |
| CVE-2026-56001 | 8.5 v3.1 | HIGH | 0.0037 | — | NetworkNo user interactionHeap OverflowVendor advisory ref | x | 2026-07-08 |
| CVE-2026-56002 | 8.5 v3.1 | HIGH | 0.0053 | — | NetworkNo user interactionHeap OverflowVendor advisory ref | — | 2026-07-08 |
| CVE-2026-56003 | 8.5 v3.1 | HIGH | 0.0058 | — | NetworkNo user interactionHeap OverflowVendor advisory ref | x | 2026-07-08 |
| CVE-2026-53511 | 8.5 v4.0 | HIGH | 0.0020 | — | No privilegesCode InjectionVendor advisory ref | — | 2026-07-07 |
| CVE-2026-59856 | 8.4 v4.0 | HIGH | — | — | No privilegesCode InjectionVendor advisory ref | — | 2026-07-09 |
| CVE-2026-59858 | 8.4 v4.0 | HIGH | — | — | No privilegesCode InjectionVendor advisory ref | — | 2026-07-09 |
| CVE-2026-42953 | 8.4 v4.0 | HIGH | 0.0014 | — | No privilegesOut-of-bounds Write | — | 2026-07-07 |
| CVE-2026-47829 | 8.3 v3.1 | HIGH | 0.0029 | — | NetworkNo privileges | — | 2026-07-09 |
| CVE-2026-15119 | 8.3 v3.1 | HIGH | 0.0016 | — | NetworkNo privilegesRace ConditionVendor advisory ref | 2026-07-08 | |
| CVE-2026-15120 | 8.3 v3.1 | HIGH | 0.0016 | — | NetworkNo privilegesUse After FreeVendor advisory ref | 2026-07-08 | |
| CVE-2026-15122 | 8.3 v3.1 | HIGH | 0.0016 | — | NetworkNo privilegesImproper Input ValidationVendor advisory ref | 2026-07-08 | |
| CVE-2026-55830 | 8.3 v3.1 | HIGH | 0.0023 | — | NetworkVendor advisory ref | — | 2026-07-08 |
| CVE-2026-49229 | 8.3 v3.1 | HIGH | 0.0044 | — | NetworkNo user interactionVendor advisory ref | — | 2026-07-07 |
| CVE-2026-49471 | 8.3 v3.1 | HIGH | 0.0024 | — | NetworkNo privilegesMissing AuthenticationCSRFVendor advisory ref | — | 2026-07-07 |
| CVE-2026-54423 | 8.2 v3.1 | HIGH | — | — | NetworkNo user interaction | — | 2026-07-10 |
| CVE-2026-4256 | 8.2 v3.1 | HIGH | — | — | NetworkNo privilegesNo user interactionLDAP Injection | — | 2026-07-09 |
| CVE-2026-44787 | 8.2 v3.1 | HIGH | — | — | NetworkNo privilegesNo user interactionPrivilege ManagementVendor advisory ref | — | 2026-07-09 |
| CVE-2026-55575 | 8.2 v4.0 | HIGH | 0.0038 | — | NetworkNo privilegesNo user interactionResource ExhaustionVendor advisory ref | — | 2026-07-08 |
| CVE-2026-57239 | 8.2 v3.1 | HIGH | 0.0011 | — | No privilegesUncontrolled Search Path | foxit | 2026-07-08 |
| CVE-2026-58525 | 8.2 v3.1 | HIGH | 0.0037 | — | NetworkNo privilegesVendor advisory ref | microsoft | 2026-07-08 |
| CVE-2026-59731 | 8.2 v3.1 | HIGH | 0.0027 | — | NetworkNo privilegesNo user interactionVendor advisory ref | — | 2026-07-08 |
| CVE-2026-59802 | 8.2 v3.1 | HIGH | 0.0019 | — | NetworkNo privilegesVendor advisory ref | — | 2026-07-08 |
| CVE-2026-44937 | 8.2 v3.1 | HIGH | 0.0050 | — | NetworkNo privilegesNo user interactionSSRFVendor advisory ref | suse | 2026-07-06 |
| CVE-2026-50168 | 8.2 v3.1 | HIGH | 0.0019 | — | NetworkNo privilegesNo user interactionSSRFVendor advisory ref | angular | 2026-06-22 |
| CVE-2026-50087 | 8.2 v3.1 | HIGH | 0.0019 | — | NetworkNo privilegesVendor advisory ref | aqara | 2026-06-12 |
| CVE-2026-50088 | 8.2 v3.1 | HIGH | 0.0018 | — | NetworkNo privilegesVendor advisory ref | aqara | 2026-06-12 |
| CVE-2026-5260 | 8.2 v3.1 | HIGH | 0.0073 | — | NetworkNo privilegesNo user interaction | — | 2026-05-26 |
| CVE-2026-41604 | 8.2 v3.1 | HIGH | 0.0095 | — | NetworkNo privilegesNo user interactionOut-of-bounds ReadVendor advisory ref | apache | 2026-04-28 |
| CVE-2026-33810 | 8.2 v3.1 | HIGH | 0.0034 | — | NetworkNo privilegesNo user interactionVendor advisory ref | golang | 2026-04-08 |
| CVE-2026-12595 | 8.1 v3.1 | HIGH | — | — | NetworkNo privilegesNo user interactionImproper AuthenticationVendor advisory ref | — | 2026-07-10 |
| CVE-2026-12597 | 8.1 v3.1 | HIGH | — | — | NetworkNo privilegesNo user interactionImproper AuthenticationVendor advisory ref | — | 2026-07-10 |
| CVE-2026-12598 | 8.1 v3.1 | HIGH | — | — | NetworkNo privilegesNo user interactionImproper AuthenticationVendor advisory ref | — | 2026-07-10 |
| CVE-2026-54771 | 8.1 v3.1 | HIGH | — | — | NetworkNo user interactionVendor advisory ref | — | 2026-07-10 |
| CVE-2026-31985 | 8.1 v3.1 | HIGH | 0.0012 | — | NetworkNo privilegesNo user interaction | — | 2026-07-09 |
| CVE-2026-33390 | 8.1 v3.1 | HIGH | 0.0021 | — | NetworkNo user interaction | — | 2026-07-09 |
| CVE-2026-3144 | 8.1 v3.1 | HIGH | 0.0037 | — | NetworkNo privilegesNo user interaction | — | 2026-07-08 |
| CVE-2026-35552 | 8.1 v3.1 | HIGH | 0.0020 | — | NetworkNo user interactionMissing AuthorizationVendor advisory ref | — | 2026-07-08 |
| CVE-2026-54591 | 8.1 v3.1 | HIGH | 0.0032 | — | NetworkNo privilegesPath TraversalVendor advisory ref | — | 2026-07-08 |
| CVE-2026-13020 | 8.1 v3.1 | HIGH | 0.0022 | — | NetworkNo privilegesNo user interaction | esri | 2026-07-07 |
| CVE-2026-50721 | 8.1 v3.1 | HIGH | 0.0037 | — | NetworkNo privilegesNo user interaction | libreswan | 2026-07-02 |
| CVE-2026-50722 | 8.1 v3.1 | HIGH | 0.0033 | — | NetworkNo privilegesNo user interaction | libreswan | 2026-07-02 |
| CVE-2026-55119 | 8.1 v3.1 | HIGH | 0.0020 | — | NetworkNo user interactionVendor advisory ref | ui | 2026-07-02 |
| CVE-2026-54513 | 8.1 v3.1 | HIGH | 0.0068 | — | NetworkNo privilegesNo user interactionVendor advisory ref | fasterxml | 2026-06-23 |
| CVE-2026-9072 | 8.1 v3.1 | HIGH | 0.0041 | — | NetworkNo privilegesNo user interactionCode Injection | ibm | 2026-06-22 |
| CVE-2026-42055 | 8.1 v3.1 | HIGH | 0.0314 | — | NetworkNo privilegesNo user interactionHeap OverflowOut-of-bounds Write | f5 | 2026-06-17 |
| CVE-2026-12290 | 8.1 v3.1 | HIGH | 0.0040 | — | NetworkNo privilegesMemory CorruptionVendor advisory ref | mozilla | 2026-06-16 |
| CVE-2026-12292 | 8.1 v3.1 | HIGH | 0.0040 | — | NetworkNo privilegesMemory CorruptionOut-of-bounds WriteVendor advisory ref | mozilla | 2026-06-16 |
| CVE-2026-12328 | 8.1 v3.1 | HIGH | 0.0048 | — | NetworkNo privilegesNo user interactionBuffer OverflowVendor advisory ref | mozilla | 2026-06-16 |
| CVE-2026-44249 | 8.1 v3.1 | HIGH | 0.0055 | — | NetworkNo privilegesNo user interactionVendor advisory ref | netty | 2026-06-11 |
| CVE-2026-9277 | 8.1 v3.1 | HIGH | 0.0085 | — | NetworkNo privilegesNo user interactionCommand InjectionOS Command InjectionVendor advisory ref | — | 2026-05-22 |
| CVE-2026-4800 | 8.1 v3.1 | HIGH | 0.0174 | — | NetworkNo privilegesNo user interactionCode InjectionVendor advisory ref | lodash | 2026-03-31 |
| CVE-2026-59224 | 8.0 v3.1 | HIGH | — | — | NetworkImproper AuthenticationVendor advisory ref | — | 2026-07-09 |
| CVE-2026-11903 | 8.0 v3.1 | HIGH | 0.0030 | — | NetworkXSS | — | 2026-07-08 |
| CVE-2026-22029 | 8.0 v3.1 | HIGH | 0.0077 | — | NetworkNo privilegesXSSVendor advisory ref | shopify | 2026-01-10 |
| CVE-2026-41857 | 7.8 v3.1 | HIGH | 0.0015 | — | No privileges | — | 2026-07-09 |
| CVE-2026-58459 | 7.8 v3.1 | HIGH | — | — | No privilegesOS Command InjectionVendor advisory ref | — | 2026-07-09 |
| CVE-2026-13126 | 7.8 v3.1 | HIGH | 0.0012 | — | No privilegesUse After Free | foxit | 2026-07-08 |
| CVE-2026-13127 | 7.8 v3.1 | HIGH | 0.0012 | — | No privilegesUse After Free | foxit | 2026-07-08 |
| CVE-2026-13128 | 7.8 v3.1 | HIGH | 0.0012 | — | No privilegesUse After Free | foxit | 2026-07-08 |
| CVE-2026-13129 | 7.8 v3.1 | HIGH | 0.0012 | — | No privilegesUse After Free | foxit | 2026-07-08 |
| CVE-2026-22927 | 7.8 v3.1 | HIGH | 0.0017 | — | No user interactionPath Traversal | — | 2026-07-08 |
| CVE-2026-55878 | 7.8 v3.1 | HIGH | 0.0015 | — | No privilegesPath TraversalVendor advisory ref | — | 2026-07-08 |
| CVE-2026-56000 | 7.8 v3.1 | HIGH | 0.0021 | — | No user interactionUse After FreeVendor advisory ref | x.org | 2026-07-08 |
| CVE-2026-57237 | 7.8 v3.1 | HIGH | 0.0012 | — | No privilegesUse After Free | foxit | 2026-07-08 |
| CVE-2026-57238 | 7.8 v3.1 | HIGH | 0.0012 | — | No privilegesUse After Free | foxit | 2026-07-08 |
| CVE-2026-57240 | 7.8 v3.1 | HIGH | 0.0013 | — | No privilegesUse After Free | foxit | 2026-07-08 |
| CVE-2026-57242 | 7.8 v3.1 | HIGH | 0.0012 | — | No privilegesUse After Free | foxit | 2026-07-08 |
| CVE-2026-57244 | 7.8 v3.1 | HIGH | 0.0012 | — | No privilegesUse After Free | foxit | 2026-07-08 |
| CVE-2026-57245 | 7.8 v3.1 | HIGH | 0.0012 | — | No privilegesUse After Free | foxit | 2026-07-08 |
| CVE-2026-57246 | 7.8 v3.1 | HIGH | 0.0012 | — | No privilegesBuffer Overflow | foxit | 2026-07-08 |
| CVE-2026-57247 | 7.8 v3.1 | HIGH | 0.0012 | — | No privilegesUse After Free | foxit | 2026-07-08 |
| CVE-2026-57248 | 7.8 v3.1 | HIGH | 0.0012 | — | No privileges | foxit | 2026-07-08 |
| CVE-2026-57249 | 7.8 v3.1 | HIGH | 0.0012 | — | No privilegesUse After Free | foxit | 2026-07-08 |
| CVE-2026-57250 | 7.8 v3.1 | HIGH | 0.0012 | — | No privilegesUse After Free | foxit | 2026-07-08 |
| CVE-2026-57251 | 7.8 v3.1 | HIGH | 0.0012 | — | No privileges | foxit | 2026-07-08 |
| CVE-2026-57252 | 7.8 v3.1 | HIGH | 0.0012 | — | No privilegesUse After Free | foxit | 2026-07-08 |
| CVE-2026-57254 | 7.8 v3.1 | HIGH | 0.0012 | — | No privileges | foxit | 2026-07-08 |
| CVE-2026-57256 | 7.8 v3.1 | HIGH | 0.0012 | — | No privilegesUse After Free | foxit | 2026-07-08 |
| CVE-2026-57260 | 7.8 v3.1 | HIGH | 0.0012 | — | No privilegesOut-of-bounds Write | foxit | 2026-07-08 |
| CVE-2026-42958 | 7.8 v3.1 | HIGH | 0.0013 | — | No privilegesUse After Free | — | 2026-07-07 |
| CVE-2026-49033 | 7.8 v3.1 | HIGH | 0.0013 | — | No privilegesStack Overflow | — | 2026-07-07 |
| CVE-2026-14191 | 7.8 v3.1 | HIGH | 0.0031 | — | No privilegesOut-of-bounds Write | — | 2026-07-01 |
| CVE-2026-52973 | 7.8 v3.1 | HIGH | 0.0013 | — | No user interaction | — | 2026-06-24 |
| CVE-2026-8357 | 7.8 v3.1 | HIGH | 0.0014 | — | No privilegesOut-of-bounds WriteVendor advisory ref | — | 2026-06-15 |
| CVE-2026-50256 | 7.8 v3.1 | HIGH | 0.0016 | — | No user interactionStack Overflow | redhat, x.org | 2026-06-05 |
| CVE-2026-50257 | 7.8 v3.1 | HIGH | 0.0014 | — | No user interactionUse After Free | redhat, x.org | 2026-06-05 |
| CVE-2026-50258 | 7.8 v3.1 | HIGH | 0.0016 | — | No user interactionStack Overflow | redhat, x.org | 2026-06-05 |
| CVE-2026-50259 | 7.8 v3.1 | HIGH | 0.0016 | — | No user interactionStack Overflow | redhat, x.org | 2026-06-05 |
| CVE-2026-50260 | 7.8 v3.1 | HIGH | 0.0015 | — | No user interactionUse After Free | redhat, x.org | 2026-06-05 |
| CVE-2026-50261 | 7.8 v3.1 | HIGH | 0.0014 | — | No user interactionUse After Free | redhat, x.org | 2026-06-05 |
| CVE-2026-50264 | 7.8 v3.1 | HIGH | 0.0015 | — | No user interactionOut-of-bounds Write | redhat, x.org | 2026-06-05 |
| CVE-2026-46189 | 7.8 v3.1 | HIGH | 0.0014 | — | No user interactionDouble Free | linux | 2026-05-28 |
| CVE-2026-46215 | 7.8 v3.1 | HIGH | 0.0013 | — | No user interactionUse After Free | linux | 2026-05-28 |
| CVE-2026-46227 | 7.8 v3.1 | HIGH | 0.0010 | — | No user interactionUse After FreeRace Condition (TOCTOU) | linux | 2026-05-28 |
| CVE-2026-45984 | 7.8 v3.1 | HIGH | 0.0031 | — | No user interactionUse After Free | linux | 2026-05-27 |
| CVE-2026-48864 | 7.8 v3.1 | HIGH | 0.0021 | — | No privilegesOut-of-bounds Write | opensuse, redhat | 2026-05-26 |
| CVE-2025-61731 | 7.8 v3.1 | HIGH | 0.0053 | — | No user interactionVendor advisory ref | golang | 2026-01-28 |
| CVE-2026-33655 | 7.7 v3.1 | HIGH | — | — | NetworkNo user interactionSSRFVendor advisory ref | — | 2026-07-09 |
| CVE-2026-55208 | 7.7 v3.1 | HIGH | — | — | NetworkNo user interactionSQL InjectionVendor advisory ref | — | 2026-07-09 |
| CVE-2026-59216 | 7.7 v3.1 | HIGH | — | — | NetworkCode InjectionInformation ExposureAuthorization Bypass (IDOR)Missing AuthorizationVendor advisory ref | — | 2026-07-09 |
| CVE-2026-59221 | 7.7 v3.1 | HIGH | — | — | NetworkNo user interactionPath TraversalSSRFVendor advisory ref | openwebui | 2026-07-09 |
| CVE-2026-59832 | 7.7 v3.1 | HIGH | — | — | NetworkNo user interactionPath TraversalVendor advisory ref | — | 2026-07-09 |
| CVE-2026-14373 | 7.7 v3.1 | HIGH | 0.0025 | — | NetworkNo user interactionMissing Authorization | — | 2026-07-08 |
| CVE-2026-58207 | 7.7 v3.1 | HIGH | 0.0055 | — | NetworkNo user interactionInteger OverflowVendor advisory ref | linuxfoundation | 2026-07-08 |
| CVE-2026-60002 | 7.7 v3.1 | HIGH | 0.0025 | — | NetworkNo privilegesNo user interactionUse After FreeVendor advisory ref | openbsd | 2026-07-08 |
| CVE-2026-34044 | 7.7 v3.1 | HIGH | 0.0024 | — | NetworkNo user interactionAuthorization Bypass (IDOR)Vendor advisory ref | — | 2026-07-07 |
| CVE-2026-54401 | 7.7 v3.1 | HIGH | 0.0020 | — | NetworkNo user interactionSSRFVendor advisory ref | ui | 2026-07-02 |
| CVE-2026-26017 | 7.7 v3.1 | HIGH | 0.0038 | — | NetworkNo user interactionRace Condition (TOCTOU)Vendor advisory ref | coredns.io | 2026-03-06 |
| CVE-2026-7831 | 7.6 v3.1 | HIGH | 0.0053 | — | NetworkNo privilegesOut-of-bounds Write | uvnc | 2026-07-01 |
| CVE-2026-11998 | 7.6 v3.1 | HIGH | 0.0034 | — | NetworkNo privilegesXSS | — | 2026-06-24 |
| CVE-2026-53705 | 7.6 v3.1 | HIGH | 0.0031 | — | NetworkNo privilegesInteger Overflow | — | 2026-06-15 |
| CVE-2026-11774 | 7.6 v3.1 | HIGH | 0.0067 | — | NetworkNo user interactionInteger Overflow | — | 2026-06-11 |
| CVE-2025-63579 | 7.5 v3.1 | HIGH | — | — | NetworkNo privilegesNo user interactionInformation Exposure | — | 2026-07-09 |
| CVE-2026-11404 | 7.5 v3.1 | HIGH | — | — | NetworkNo privilegesNo user interactionOut-of-bounds ReadVendor advisory ref | — | 2026-07-09 |
| CVE-2026-11571 | 7.5 v3.1 | HIGH | 0.0014 | — | NetworkNo privilegesNo user interactionVendor advisory ref | — | 2026-07-09 |
| CVE-2026-13462 | 7.5 v3.1 | HIGH | — | — | NetworkNo privilegesNo user interaction | — | 2026-07-09 |
| CVE-2026-15270 | 7.5 v3.1 | HIGH | — | — | NetworkNo user interaction | — | 2026-07-09 |
| CVE-2026-15271 | 7.5 v3.1 | HIGH | — | — | NetworkNo user interaction | — | 2026-07-09 |
| CVE-2026-1989 | 7.5 v3.1 | HIGH | 0.0041 | — | NetworkNo privilegesNo user interactionAuthorization Bypass (IDOR) | — | 2026-07-09 |
| CVE-2026-31984 | 7.5 v3.1 | HIGH | 0.0027 | — | NetworkNo privilegesNo user interactionResource Exhaustion | — | 2026-07-09 |
| CVE-2026-47831 | 7.5 v3.1 | HIGH | 0.0019 | — | No privilegesNo user interaction | — | 2026-07-09 |
| CVE-2026-47840 | 7.5 v3.1 | HIGH | 0.0013 | — | NetworkNo privilegesNo user interaction | — | 2026-07-09 |
| CVE-2026-51600 | 7.5 v3.1 | HIGH | — | — | NetworkNo privilegesNo user interactionResource Exhaustion (DoS) | — | 2026-07-09 |
| CVE-2026-51602 | 7.5 v3.1 | HIGH | — | — | NetworkNo privilegesNo user interactionStack Overflow | — | 2026-07-09 |
| CVE-2026-51603 | 7.5 v3.1 | HIGH | — | — | NetworkNo privilegesNo user interactionStack Overflow | — | 2026-07-09 |
| CVE-2026-51604 | 7.5 v3.1 | HIGH | — | — | NetworkNo privilegesNo user interactionStack Overflow | — | 2026-07-09 |
| CVE-2026-51605 | 7.5 v3.1 | HIGH | — | — | NetworkNo privilegesNo user interactionStack Overflow | — | 2026-07-09 |
| CVE-2026-51606 | 7.5 v3.1 | HIGH | — | — | NetworkNo privilegesNo user interactionImproper Input Validation | — | 2026-07-09 |
| CVE-2026-54695 | 7.5 v3.1 | HIGH | — | — | NetworkNo privilegesNo user interactionMissing AuthorizationVendor advisory ref | — | 2026-07-09 |
| CVE-2026-55420 | 7.5 v3.1 | HIGH | — | — | NetworkNo user interactionOS Command InjectionVendor advisory ref | — | 2026-07-09 |
| CVE-2026-57023 | 7.5 v3.1 | HIGH | — | — | NetworkNo privilegesNo user interaction | — | 2026-07-09 |
| CVE-2026-57026 | 7.5 v3.1 | HIGH | — | — | NetworkNo privilegesNo user interaction | — | 2026-07-09 |
| CVE-2026-57111 | 7.5 v3.1 | HIGH | 0.0017 | — | NetworkNo privilegesNo user interactionVendor advisory ref | apache | 2026-07-09 |
| CVE-2026-59692 | 7.5 v3.1 | HIGH | — | — | NetworkNo privilegesNo user interactionStack Overflow | — | 2026-07-09 |
| CVE-2026-59720 | 7.5 v3.1 | HIGH | — | — | NetworkNo privilegesNo user interactionInformation ExposureVendor advisory ref | — | 2026-07-09 |
| CVE-2026-59834 | 7.5 v3.1 | HIGH | — | — | NetworkNo privilegesNo user interactionSQL InjectionVendor advisory ref | — | 2026-07-09 |
| CVE-2026-60108 | 7.5 v3.1 | HIGH | — | — | NetworkNo privilegesNo user interactionResource ExhaustionVendor advisory ref | — | 2026-07-09 |
| CVE-2026-60109 | 7.5 v3.1 | HIGH | — | — | NetworkNo privilegesNo user interactionNULL Pointer DerefVendor advisory ref | — | 2026-07-09 |
| CVE-2026-10699 | 7.5 v3.1 | HIGH | 0.0028 | — | NetworkNo privilegesNo user interactionMemory Leak | — | 2026-07-08 |
| CVE-2026-10706 | 7.5 v3.1 | HIGH | 0.0015 | — | NetworkNo privilegesNo user interaction | — | 2026-07-08 |
| CVE-2026-10708 | 7.5 v3.1 | HIGH | 0.0010 | — | NetworkNo privilegesNo user interaction | — | 2026-07-08 |
| CVE-2026-15053 | 7.5 v3.1 | HIGH | 0.0032 | — | NetworkNo privilegesNo user interaction | — | 2026-07-08 |
| CVE-2026-15111 | 7.5 v3.1 | HIGH | 0.0016 | — | NetworkNo privilegesUse After FreeVendor advisory ref | 2026-07-08 | |
| CVE-2026-15117 | 7.5 v3.1 | HIGH | 0.0016 | — | NetworkNo privilegesUse After FreeVendor advisory ref | 2026-07-08 | |
| CVE-2026-15167 | 7.5 v3.1 | HIGH | 0.0028 | — | NetworkNo privilegesNo user interactionStack Overflow | wireshark | 2026-07-08 |
| CVE-2026-29008 | 7.5 v3.1 | HIGH | 0.0043 | — | NetworkNo privilegesNo user interactionVendor advisory ref | — | 2026-07-08 |
| CVE-2026-31309 | 7.5 v3.1 | HIGH | 0.0034 | — | NetworkNo privilegesNo user interactionMissing AuthorizationVendor advisory ref | — | 2026-07-08 |
| CVE-2026-44025 | 7.5 v3.1 | HIGH | 0.0048 | — | NetworkNo privilegesNo user interactionMissing AuthenticationVendor advisory ref | — | 2026-07-08 |
| CVE-2026-44160 | 7.5 v3.1 | HIGH | 0.0063 | — | NetworkNo privilegesNo user interactionVendor advisory ref | — | 2026-07-08 |
| CVE-2026-44840 | 7.5 v3.1 | HIGH | 0.0048 | — | NetworkNo privilegesNo user interactionVendor advisory ref | — | 2026-07-08 |
| CVE-2026-49866 | 7.5 v3.1 | HIGH | 0.0045 | — | NetworkNo privilegesNo user interactionResource ExhaustionVendor advisory ref | — | 2026-07-08 |
| CVE-2026-51535 | 7.5 v3.1 | HIGH | 0.0020 | — | NetworkNo privilegesNo user interactionResource Exhaustion (DoS) | — | 2026-07-08 |
| CVE-2026-53482 | 7.5 v3.1 | HIGH | 0.0034 | — | NetworkNo privilegesNo user interactionInteger Overflow | dell | 2026-07-08 |
| CVE-2026-54499 | 7.5 v3.1 | HIGH | 0.0030 | — | NetworkNo privilegesInsecure DeserializationVendor advisory ref | — | 2026-07-08 |
| CVE-2026-54772 | 7.5 v3.1 | HIGH | 0.0048 | — | NetworkNo privilegesNo user interactionResource Exhaustion (DoS)Vendor advisory ref | — | 2026-07-08 |
| CVE-2026-55404 | 7.5 v3.1 | HIGH | 0.0055 | — | NetworkNo privilegesInjectionVendor advisory ref | — | 2026-07-08 |
| CVE-2026-55470 | 7.5 v3.1 | HIGH | 0.0035 | — | NetworkNo privilegesNo user interactionVendor advisory ref | — | 2026-07-08 |
| CVE-2026-55760 | 7.5 v3.1 | HIGH | 0.0041 | — | NetworkNo privilegesNo user interactionPath TraversalVendor advisory ref | — | 2026-07-08 |
| CVE-2026-58210 | 7.5 v3.1 | HIGH | 0.0073 | — | NetworkNo privilegesNo user interactionResource Exhaustion (DoS)Vendor advisory ref | — | 2026-07-08 |
| CVE-2026-58250 | 7.5 v3.1 | HIGH | 0.0073 | — | NetworkNo privilegesNo user interactionNULL Pointer DerefVendor advisory ref | — | 2026-07-08 |
| CVE-2026-59803 | 7.5 v3.1 | HIGH | 0.0041 | — | NetworkNo privilegesNo user interactionVendor advisory ref | — | 2026-07-08 |
| CVE-2026-59869 | 7.5 v3.1 | HIGH | 0.0035 | — | NetworkNo privilegesNo user interactionVendor advisory ref | — | 2026-07-08 |
| CVE-2026-59887 | 7.5 v3.1 | HIGH | 0.0035 | — | NetworkNo privilegesNo user interactionVendor advisory ref | — | 2026-07-08 |
| CVE-2026-59922 | 7.5 v3.1 | HIGH | 0.0035 | — | NetworkNo privilegesNo user interactionVendor advisory ref | mistune_project | 2026-07-08 |
| CVE-2026-59925 | 7.5 v3.1 | HIGH | 0.0034 | — | NetworkNo privilegesNo user interactionVendor advisory ref | mistune_project | 2026-07-08 |
| CVE-2026-59928 | 7.5 v3.1 | HIGH | 0.0035 | — | NetworkNo privilegesNo user interactionVendor advisory ref | mistune_project | 2026-07-08 |
| CVE-2026-59935 | 7.5 v3.1 | HIGH | 0.0033 | — | NetworkNo privilegesNo user interactionVendor advisory ref | pypdf_project | 2026-07-08 |
| CVE-2026-59936 | 7.5 v3.1 | HIGH | 0.0030 | — | NetworkNo privilegesNo user interactionResource Exhaustion (DoS)Vendor advisory ref | pypdf_project | 2026-07-08 |
| CVE-2026-59937 | 7.5 v3.1 | HIGH | 0.0030 | — | NetworkNo privilegesNo user interactionResource Exhaustion (DoS)Vendor advisory ref | pypdf_project | 2026-07-08 |
| CVE-2026-51937 | 7.5 v3.1 | HIGH | 0.0035 | — | NetworkNo privilegesNo user interactionMissing Authentication | — | 2026-07-07 |
| CVE-2026-56811 | 7.5 v3.1 | HIGH | 0.0038 | — | NetworkNo privilegesNo user interactionResource ExhaustionVendor advisory ref | phoenixframework | 2026-07-07 |
| CVE-2026-56812 | 7.5 v3.1 | HIGH | 0.0035 | — | NetworkNo privilegesNo user interactionVendor advisory ref | phoenixframework | 2026-07-07 |
| CVE-2026-58469 | 7.5 v3.1 | HIGH | 0.0035 | — | NetworkNo privilegesNo user interactionOut-of-bounds ReadVendor advisory ref | gnu | 2026-07-07 |
| CVE-2026-59708 | 7.5 v3.1 | HIGH | 0.0034 | — | NetworkNo privilegesNo user interactionMissing AuthorizationVendor advisory ref | — | 2026-07-07 |
| CVE-2026-13698 | 7.5 v3.1 | HIGH | 0.0052 | — | NetworkNo privilegesNo user interactionMemory LeakResource Exhaustion | openvpn | 2026-07-06 |
| CVE-2026-26307 | 7.5 v3.1 | HIGH | 0.0018 | — | NetworkNo privilegesNo user interactionResource Exhaustion (DoS)Vendor advisory ref | — | 2026-07-03 |
| CVE-2026-55110 | 7.5 v3.1 | HIGH | 0.0018 | — | NetworkNo privilegesVendor advisory ref | ui | 2026-07-02 |
| CVE-2026-55111 | 7.5 v3.1 | HIGH | 0.0034 | — | NetworkNo privilegesNo user interactionPath TraversalVendor advisory ref | ui | 2026-07-02 |
| CVE-2026-55112 | 7.5 v3.1 | HIGH | 0.0019 | — | NetworkNo user interactionVendor advisory ref | ui | 2026-07-02 |
| CVE-2026-55113 | 7.5 v3.1 | HIGH | 0.0024 | — | NetworkNo privilegesNo user interactionSSRFVendor advisory ref | ui | 2026-07-02 |
| CVE-2026-14265 | 7.5 v3.1 | HIGH | 0.0041 | — | NetworkNo user interactionInsecure DeserializationVendor advisory ref | amazon | 2026-07-01 |
| CVE-2026-20213 | 7.5 v3.1 | HIGH | 0.0046 | — | NetworkNo privilegesNo user interactionBuffer OverflowVendor advisory ref | clamav, cisco | 2026-07-01 |
| CVE-2026-20214 | 7.5 v3.1 | HIGH | 0.0046 | — | NetworkNo privilegesNo user interactionBuffer OverflowVendor advisory ref | clamav, cisco | 2026-07-01 |
| CVE-2026-20215 | 7.5 v3.1 | HIGH | 0.0039 | — | NetworkNo privilegesNo user interactionBuffer OverflowVendor advisory ref | clamav, cisco | 2026-07-01 |
| CVE-2026-20216 | 7.5 v3.1 | HIGH | 0.0039 | — | NetworkNo privilegesNo user interactionResource ExhaustionVendor advisory ref | clamav, cisco | 2026-07-01 |
| CVE-2026-20217 | 7.5 v3.1 | HIGH | 0.0039 | — | NetworkNo privilegesNo user interactionBuffer OverflowVendor advisory ref | clamav, cisco | 2026-07-01 |
| CVE-2026-20243 | 7.5 v3.1 | HIGH | 0.0039 | — | NetworkNo privilegesNo user interactionBuffer OverflowVendor advisory ref | clamav, cisco | 2026-07-01 |
| CVE-2026-20244 | 7.5 v3.1 | HIGH | 0.0039 | — | NetworkNo privilegesNo user interactionBuffer OverflowVendor advisory ref | clamav, cisco | 2026-07-01 |
| CVE-2026-58036 | 7.5 v3.1 | HIGH | 0.0024 | — | NetworkNo privilegesNo user interactionInformation Exposure | mediawiki | 2026-07-01 |
| CVE-2026-50170 | 7.5 v3.1 | HIGH | 0.0027 | — | NetworkNo privilegesNo user interactionVendor advisory ref | angular | 2026-06-22 |
| CVE-2026-54268 | 7.5 v3.1 | HIGH | 0.0033 | — | NetworkNo privilegesNo user interactionResource Exhaustion (DoS)Vendor advisory ref | angular | 2026-06-22 |
| CVE-2026-8858 | 7.5 v3.1 | HIGH | 0.0026 | — | No privilegesNo user interactionCode Injection | ibm | 2026-06-22 |
| CVE-2026-50559 | 7.5 v3.1 | HIGH | 0.0045 | — | NetworkNo privilegesNo user interactionImproper AuthenticationIncorrect AuthorizationVendor advisory ref | quarkus | 2026-06-19 |
| CVE-2026-12151 | 7.5 v3.1 | HIGH | 0.0076 | — | NetworkNo privilegesNo user interactionResource Exhaustion (DoS)Resource ExhaustionVendor advisory ref | nodejs | 2026-06-17 |
| CVE-2026-48779 | 7.5 v3.1 | HIGH | 0.0078 | — | NetworkNo privilegesNo user interactionResource Exhaustion (DoS)Resource ExhaustionVendor advisory ref | ws_project | 2026-06-17 |
| CVE-2026-6734 | 7.5 v3.1 | HIGH | 0.0032 | — | NetworkNo user interactionVendor advisory ref | nodejs | 2026-06-17 |
| CVE-2026-9863 | 7.5 v3.1 | HIGH | 0.0058 | — | NetworkNo privilegesOS Command InjectionVendor advisory ref | forta | 2026-06-15 |
| CVE-2026-12143 | 7.5 v3.1 | HIGH | 0.0041 | — | NetworkNo privilegesNo user interactionVendor advisory ref | — | 2026-06-12 |
| CVE-2026-44893 | 7.5 v3.1 | HIGH | 0.0059 | — | NetworkNo privilegesNo user interactionVendor advisory ref | netty | 2026-06-12 |
| CVE-2026-48059 | 7.5 v3.1 | HIGH | 0.0061 | — | NetworkNo privilegesNo user interactionMemory LeakVendor advisory ref | netty | 2026-06-12 |
| CVE-2026-44486 | 7.5 v3.1 | HIGH | 0.0055 | — | NetworkNo privilegesNo user interactionInformation ExposureVendor advisory ref | axios | 2026-06-11 |
| CVE-2026-44487 | 7.5 v3.1 | HIGH | 0.0069 | — | NetworkNo privilegesNo user interactionVendor advisory ref | axios | 2026-06-11 |
| CVE-2026-44488 | 7.5 v3.1 | HIGH | 0.0063 | — | NetworkNo privilegesNo user interactionResource ExhaustionVendor advisory ref | axios | 2026-06-11 |
| CVE-2026-44496 | 7.5 v3.1 | HIGH | 0.0065 | — | NetworkNo privilegesNo user interactionResource Exhaustion (DoS)Vendor advisory ref | axios | 2026-06-11 |
| CVE-2026-40983 | 7.5 v3.1 | HIGH | 0.0047 | — | NetworkNo privilegesNo user interactionResource Exhaustion (DoS)Resource Exhaustion | — | 2026-06-09 |
| CVE-2026-40984 | 7.5 v3.1 | HIGH | 0.0057 | — | NetworkNo privilegesNo user interactionResource Exhaustion (DoS)Resource Exhaustion | — | 2026-06-09 |
| CVE-2026-49975 | 7.5 v3.1 | HIGH | 0.1147 | — | EPSS highNetworkNo privilegesNo user interactionVendor advisory ref | debian, apache | 2026-06-08 |
| CVE-2026-39829 | 7.5 v3.1 | HIGH | 0.0042 | — | NetworkNo privilegesNo user interactionVendor advisory ref | golang | 2026-05-22 |
| CVE-2026-42578 | 7.5 v3.1 | HIGH | 0.0067 | — | NetworkNo privilegesNo user interactionVendor advisory ref | netty | 2026-05-13 |
| CVE-2026-42579 | 7.5 v3.1 | HIGH | 0.0082 | — | NetworkNo privilegesNo user interactionImproper Input ValidationResource Exhaustion (DoS)Vendor advisory ref | netty | 2026-05-13 |
| CVE-2026-42587 | 7.5 v3.1 | HIGH | 0.0086 | — | NetworkNo privilegesNo user interactionResource Exhaustion (DoS)Resource ExhaustionVendor advisory ref | netty | 2026-05-13 |
| CVE-2026-44241 | 7.5 v3.1 | HIGH | 0.0040 | — | NetworkNo privilegesNo user interactionResource Exhaustion (DoS)Vendor advisory ref | — | 2026-05-12 |
| CVE-2026-33811 | 7.5 v3.1 | HIGH | 0.0081 | — | NetworkNo privilegesNo user interactionDouble FreeVendor advisory ref | golang | 2026-05-07 |
| CVE-2026-39820 | 7.5 v3.1 | HIGH | 0.0078 | — | NetworkNo privilegesNo user interactionResource ExhaustionVendor advisory ref | golang | 2026-05-07 |
| CVE-2026-42499 | 7.5 v3.1 | HIGH | 0.0080 | — | NetworkNo privilegesNo user interactionVendor advisory ref | golang | 2026-05-07 |
| CVE-2026-6322 | 7.5 v3.1 | HIGH | 0.0047 | — | NetworkNo privilegesNo user interactionVendor advisory ref | openjsf | 2026-05-05 |
| CVE-2026-42151 | 7.5 v3.1 | HIGH | 0.0033 | — | NetworkNo privilegesNo user interactionInformation ExposureVendor advisory ref | prometheus | 2026-05-04 |
| CVE-2026-42154 | 7.5 v3.1 | HIGH | 0.0076 | — | NetworkNo privilegesNo user interactionResource Exhaustion (DoS)Resource ExhaustionVendor advisory ref | prometheus | 2026-05-04 |
| CVE-2025-48431 | 7.5 v3.1 | HIGH | 0.0105 | — | NetworkNo privilegesNo user interactionVendor advisory ref | apache | 2026-04-28 |
| CVE-2026-41602 | 7.5 v3.1 | HIGH | 0.0116 | — | NetworkNo privilegesNo user interactionInteger OverflowVendor advisory ref | apache | 2026-04-28 |
| CVE-2026-42039 | 7.5 v3.1 | HIGH | 0.0074 | — | NetworkNo privilegesNo user interactionUncontrolled RecursionResource ExhaustionVendor advisory ref | axios | 2026-04-24 |
| CVE-2026-40895 | 7.5 v3.1 | HIGH | 0.0049 | — | NetworkNo privilegesNo user interactionInformation ExposureVendor advisory ref | follow-redirects_project | 2026-04-21 |
| CVE-2026-29146 | 7.5 v3.1 | HIGH | 0.0349 | — | NetworkNo privilegesNo user interactionInformation ExposureVendor advisory ref | apache | 2026-04-09 |
| CVE-2026-34486 | 7.5 v3.1 | HIGH | 0.1583 | — | EPSS highNetworkNo privilegesNo user interactionVendor advisory ref | apache | 2026-04-09 |
| CVE-2026-32280 | 7.5 v3.1 | HIGH | 0.0062 | — | NetworkNo privilegesNo user interactionResource ExhaustionVendor advisory ref | golang | 2026-04-08 |
| CVE-2026-32283 | 7.5 v3.1 | HIGH | 0.0062 | — | NetworkNo privilegesNo user interactionResource ExhaustionVendor advisory ref | golang | 2026-04-08 |
| CVE-2026-34986 | 7.5 v3.1 | HIGH | 0.0065 | — | NetworkNo privilegesNo user interactionVendor advisory ref | go-jose_project | 2026-04-06 |
| CVE-2026-32285 | 7.5 v3.1 | HIGH | 0.0075 | — | NetworkNo privilegesNo user interactionVendor advisory ref | jsonparser_project | 2026-03-26 |
| CVE-2026-33487 | 7.5 v3.1 | HIGH | 0.0030 | — | NetworkNo privilegesNo user interactionVendor advisory ref | goxmldsig_project | 2026-03-26 |
| CVE-2026-4926 | 7.5 v3.1 | HIGH | 0.0079 | — | NetworkNo privilegesNo user interactionResource Exhaustion (DoS)Vendor advisory ref | pillarjs | 2026-03-26 |
| CVE-2026-32141 | 7.5 v3.1 | HIGH | 0.0078 | — | NetworkNo privilegesNo user interactionUncontrolled RecursionResource ExhaustionVendor advisory ref | webreflection | 2026-03-12 |
| CVE-2026-25679 | 7.5 v3.1 | HIGH | 0.0073 | — | NetworkNo privilegesNo user interactionVendor advisory ref | golang | 2026-03-06 |
| CVE-2026-26018 | 7.5 v3.1 | HIGH | 0.0107 | — | NetworkNo privilegesNo user interactionResource Exhaustion (DoS)Resource ExhaustionVendor advisory ref | coredns.io | 2026-03-06 |
| CVE-2026-27137 | 7.5 v3.1 | HIGH | 0.0061 | — | NetworkNo privilegesNo user interactionVendor advisory ref | golang | 2026-03-06 |
| CVE-2026-1693 | 7.5 v3.1 | HIGH | 0.0031 | — | NetworkNo privilegesNo user interaction | arcinfo | 2026-02-26 |
| CVE-2026-25639 | 7.5 v3.1 | HIGH | 0.0259 | — | NetworkNo privilegesNo user interactionVendor advisory ref | axios | 2026-02-09 |
| CVE-2025-61726 | 7.5 v3.1 | HIGH | 0.0194 | — | NetworkNo privilegesNo user interactionResource ExhaustionVendor advisory ref | golang | 2026-01-28 |
| CVE-2025-44203 | 7.5 v3.1 | HIGH | 0.0054 | — | NetworkNo privilegesNo user interactionInformation ExposureResource Exhaustion (DoS) | digitaldruid | 2025-06-20 |
| CVE-2020-26868 | 7.5 v3.1 | HIGH | 0.0213 | — | NetworkNo privilegesNo user interactionVendor advisory ref | arcinfo | 2020-10-12 |
| CVE-2020-26869 | 7.5 v3.1 | HIGH | 0.0165 | — | NetworkNo privilegesNo user interactionInformation ExposureVendor advisory ref | arcinfo | 2020-10-12 |
| CVE-2026-49276 | 7.4 v4.0 | HIGH | — | — | NetworkNo privilegesXSSVendor advisory ref | — | 2026-07-09 |
| CVE-2026-55424 | 7.4 v4.0 | HIGH | — | — | NetworkXSSVendor advisory ref | — | 2026-07-09 |
| CVE-2026-54774 | 7.4 v3.1 | HIGH | 0.0015 | — | NetworkNo privilegesNo user interactionVendor advisory ref | — | 2026-07-08 |
| CVE-2026-54781 | 7.4 v3.1 | HIGH | 0.0018 | — | NetworkNo privilegesNo user interactionImproper AuthenticationVendor advisory ref | — | 2026-07-08 |
| CVE-2026-54783 | 7.4 v3.1 | HIGH | 0.0014 | — | NetworkNo privilegesNo user interactionVendor advisory ref | — | 2026-07-08 |
| CVE-2026-54784 | 7.4 v3.1 | HIGH | 0.0018 | — | NetworkNo privilegesNo user interactionVendor advisory ref | — | 2026-07-08 |
| CVE-2026-56776 | 7.4 v3.1 | HIGH | 0.0016 | — | NetworkNo user interactionIncorrect AuthorizationVendor advisory ref | n8n | 2026-07-08 |
| CVE-2026-59806 | 7.4 v3.1 | HIGH | 0.0025 | — | NetworkNo privilegesSSRFVendor advisory ref | — | 2026-07-08 |
| CVE-2026-7830 | 7.4 v3.1 | HIGH | 0.0022 | — | NetworkNo privilegesNo user interaction | uvnc | 2026-07-01 |
| CVE-2026-9697 | 7.4 v3.1 | HIGH | 0.0046 | — | NetworkNo privilegesNo user interactionVendor advisory ref | nodejs | 2026-06-17 |
| CVE-2026-41603 | 7.4 v3.1 | HIGH | 0.0059 | — | NetworkNo privilegesNo user interactionMissing AuthenticationVendor advisory ref | apache | 2026-04-28 |
| CVE-2026-42033 | 7.4 v3.1 | HIGH | 0.0084 | — | NetworkNo privilegesNo user interactionVendor advisory ref | axios | 2026-04-24 |
| CVE-2026-15319 | 7.3 v3.1 | HIGH | — | — | NetworkNo privilegesNo user interaction | — | 2026-07-10 |
| CVE-2026-15134 | 7.3 v3.1 | HIGH | 0.0026 | — | NetworkNo privilegesNo user interactionInjectionSQL Injection | — | 2026-07-09 |
| CVE-2026-15135 | 7.3 v3.1 | HIGH | 0.0027 | — | NetworkNo privilegesNo user interactionInjectionSQL Injection | — | 2026-07-09 |
| CVE-2026-15137 | 7.3 v3.1 | HIGH | 0.0026 | — | NetworkNo privilegesNo user interactionInjectionSQL Injection | — | 2026-07-09 |
| CVE-2026-15190 | 7.3 v3.1 | HIGH | — | — | NetworkNo privilegesNo user interactionInjectionSQL Injection | — | 2026-07-09 |
| CVE-2026-53963 | 7.3 v3.1 | HIGH | — | — | NetworkXSSVendor advisory ref | — | 2026-07-09 |
| CVE-2026-57028 | 7.3 v3.1 | HIGH | — | — | NetworkNo privilegesNo user interaction | — | 2026-07-09 |
| CVE-2026-59214 | 7.3 v3.1 | HIGH | — | — | NetworkXSSVendor advisory ref | — | 2026-07-09 |
| CVE-2026-13320 | 7.3 v3.1 | HIGH | 0.0030 | — | NetworkXSSVendor advisory ref | gitlab | 2026-07-08 |
| CVE-2026-42584 | 7.3 v3.1 | HIGH | 0.0063 | — | NetworkNo privilegesNo user interactionVendor advisory ref | netty | 2026-05-13 |
| CVE-2026-43869 | 7.3 v3.1 | HIGH | 0.0063 | — | NetworkNo privilegesNo user interactionVendor advisory ref | apache | 2026-05-05 |
| CVE-2026-41605 | 7.3 v3.1 | HIGH | 0.0097 | — | NetworkNo privilegesNo user interactionInteger OverflowVendor advisory ref | apache | 2026-04-28 |
| CVE-2026-13430 | 7.2 v3.1 | HIGH | — | — | NetworkNo user interactionUnrestricted UploadVendor advisory ref | — | 2026-07-10 |
| CVE-2026-13441 | 7.2 v3.1 | HIGH | — | — | NetworkNo privilegesNo user interactionXSSVendor advisory ref | — | 2026-07-09 |
| CVE-2026-15000 | 7.2 v3.1 | HIGH | 0.0034 | — | NetworkNo privilegesNo user interactionXSSVendor advisory ref | — | 2026-07-09 |
| CVE-2026-54801 | 7.2 v3.1 | HIGH | — | — | NetworkNo user interactionVendor advisory ref | — | 2026-07-09 |
| CVE-2026-59721 | 7.2 v3.1 | HIGH | — | — | NetworkNo user interactionCommand InjectionOS Command InjectionVendor advisory ref | — | 2026-07-09 |
| CVE-2026-61343 | 7.2 v3.1 | HIGH | — | — | NetworkNo user interactionPath TraversalVendor advisory ref | — | 2026-07-09 |
| CVE-2026-8848 | 7.2 v3.1 | HIGH | 0.0066 | — | NetworkNo user interactionMissing Authorization | — | 2026-07-09 |
| CVE-2026-9253 | 7.2 v3.1 | HIGH | — | — | NetworkNo privilegesNo user interactionXSSVendor advisory ref | — | 2026-07-09 |
| CVE-2026-0288 | 7.2 v4.0 | HIGH | 0.0052 | — | NetworkNo privilegesNo user interactionOut-of-bounds Write | — | 2026-07-08 |
| CVE-2026-10698 | 7.2 v3.1 | HIGH | 0.0044 | — | NetworkNo user interaction | — | 2026-07-08 |
| CVE-2026-24697 | 7.2 v3.1 | HIGH | 0.0096 | — | NetworkNo user interactionOS Command Injection | — | 2026-07-08 |
| CVE-2026-24698 | 7.2 v3.1 | HIGH | 0.0096 | — | NetworkNo user interactionOS Command Injection | — | 2026-07-08 |
| CVE-2026-24699 | 7.2 v3.1 | HIGH | 0.0096 | — | NetworkNo user interactionOS Command Injection | — | 2026-07-08 |
| CVE-2026-24700 | 7.2 v3.1 | HIGH | 0.0096 | — | NetworkNo user interactionOS Command Injection | — | 2026-07-08 |
| CVE-2026-44161 | 7.2 v3.1 | HIGH | 0.0045 | — | NetworkNo privilegesNo user interactionSSRFVendor advisory ref | — | 2026-07-08 |
| CVE-2026-55077 | 7.2 v3.1 | HIGH | 0.0062 | — | NetworkNo user interactionImproper AuthorizationVendor advisory ref | coder | 2026-07-07 |
| CVE-2026-13383 | 7.2 v3.1 | HIGH | 0.0047 | — | NetworkNo user interactionOut-of-bounds WriteVendor advisory ref | watchguard | 2026-07-03 |
| CVE-2026-13384 | 7.2 v3.1 | HIGH | 0.0047 | — | NetworkNo user interactionOut-of-bounds WriteVendor advisory ref | watchguard | 2026-07-03 |
| CVE-2026-7829 | 7.2 v3.1 | HIGH | 0.0057 | — | NetworkNo user interactionOut-of-bounds Write | uvnc | 2026-07-01 |
| CVE-2026-42043 | 7.2 v3.1 | HIGH | 0.0066 | — | NetworkNo privilegesNo user interactionSSRFVendor advisory ref | axios | 2026-04-24 |
| CVE-2023-2373 | 7.2 v3.1 | HIGH | 0.0431 | — | EPSS highNetworkNo user interactionInjectionCommand Injection | ui | 2023-04-28 |
| CVE-2023-2374 | 7.2 v3.1 | HIGH | 0.0455 | — | EPSS highNetworkNo user interactionInjectionCommand Injection | ui | 2023-04-28 |
| CVE-2023-2375 | 7.2 v3.1 | HIGH | 0.0657 | — | EPSS highNetworkNo user interactionInjectionCommand Injection | ui | 2023-04-28 |
| CVE-2023-2376 | 7.2 v3.1 | HIGH | 0.0431 | — | EPSS highNetworkNo user interactionInjectionCommand Injection | ui | 2023-04-28 |
| CVE-2023-2377 | 7.2 v3.1 | HIGH | 0.0431 | — | EPSS highNetworkNo user interactionInjectionCommand Injection | ui | 2023-04-28 |
| CVE-2023-2378 | 7.2 v3.1 | HIGH | 0.0431 | — | EPSS highNetworkNo user interactionInjectionCommand Injection | ui | 2023-04-28 |
| CVE-2026-50181 | 7.1 v3.1 | HIGH | — | — | No user interactionPath TraversalVendor advisory ref | — | 2026-07-10 |
| CVE-2026-14372 | 7.1 v3.1 | HIGH | — | — | NetworkNo user interactionPath Traversal | — | 2026-07-09 |
| CVE-2026-31982 | 7.1 v3.1 | HIGH | 0.0017 | — | NetworkNo privileges | — | 2026-07-09 |
| CVE-2026-47828 | 7.1 v3.1 | HIGH | 0.0009 | — | No privileges | — | 2026-07-09 |
| CVE-2026-54005 | 7.1 v4.0 | HIGH | — | — | NetworkNo user interactionMissing AuthorizationVendor advisory ref | — | 2026-07-09 |
| CVE-2026-55212 | 7.1 v3.1 | HIGH | — | — | NetworkNo user interactionImproper AuthorizationVendor advisory ref | — | 2026-07-09 |
| CVE-2026-55865 | 7.1 v4.0 | HIGH | — | — | NetworkNo user interactionVendor advisory ref | — | 2026-07-09 |
| CVE-2026-59206 | 7.1 v3.1 | HIGH | — | — | NetworkNo user interactionVendor advisory ref | n8n | 2026-07-09 |
| CVE-2026-59209 | 7.1 v4.0 | HIGH | — | — | NetworkNo user interactionInformation ExposureWeak Credential ProtectionVendor advisory ref | — | 2026-07-09 |
| CVE-2026-59219 | 7.1 v3.1 | HIGH | — | — | NetworkNo user interactionVendor advisory ref | — | 2026-07-09 |
| CVE-2026-59691 | 7.1 v3.1 | HIGH | — | — | NetworkNo privilegesOut-of-bounds Write | — | 2026-07-09 |
| CVE-2026-35210 | 7.1 v3.1 | HIGH | 0.0027 | — | NetworkNo user interactionAuthorization Bypass (IDOR)Incorrect AuthorizationVendor advisory ref | — | 2026-07-08 |
| CVE-2026-54528 | 7.1 v3.1 | HIGH | 0.0029 | — | NetworkNo user interactionVendor advisory ref | — | 2026-07-08 |
| CVE-2026-55761 | 7.1 v4.0 | HIGH | 0.0031 | — | NetworkNo privilegesNo user interactionImproper AuthenticationVendor advisory ref | — | 2026-07-08 |
| CVE-2026-58213 | 7.1 v3.1 | HIGH | 0.0044 | — | NetworkNo user interactionInjectionVendor advisory ref | — | 2026-07-08 |
| CVE-2026-59261 | 7.1 v3.1 | HIGH | 0.0013 | — | No privilegesWeak Credential ProtectionVendor advisory ref | openclaw | 2026-07-08 |
| CVE-2026-52719 | 7.1 v3.1 | HIGH | 0.0030 | — | NetworkNo privilegesOut-of-bounds Read | — | 2026-06-15 |
| CVE-2026-52722 | 7.1 v3.1 | HIGH | 0.0031 | — | NetworkNo privilegesInteger Overflow | — | 2026-06-15 |
| CVE-2026-56297 | 7.0 v3.1 | HIGH | 0.0026 | — | NetworkNo privilegesNo user interactionRace ConditionVendor advisory ref | — | 2026-07-08 |
| CVE-2026-59948 | 7.0 v3.1 | HIGH | 0.0013 | — | No privilegesPath TraversalOut-of-bounds WriteVendor advisory ref | — | 2026-07-08 |
| CVE-2026-44495 | 7.0 v3.1 | HIGH | 0.0050 | — | NetworkNo privilegesNo user interactionCode InjectionVendor advisory ref | — | 2026-06-11 |
| CVE-2026-50188 | 6.9 v4.0 | MEDIUM | — | — | NetworkNo privilegesNo user interactionVendor advisory ref | — | 2026-07-09 |
| CVE-2025-3110 | 6.9 v4.0 | MEDIUM | 0.0031 | — | NetworkNo privilegesNo user interaction | — | 2026-07-08 |
| CVE-2026-55689 | 6.8 v3.1 | MEDIUM | — | — | NetworkNo user interactionImproper AuthenticationVendor advisory ref | — | 2026-07-09 |
| CVE-2026-59208 | 6.8 v3.1 | MEDIUM | — | — | NetworkNo user interactionImproper AuthenticationVendor advisory ref | n8n | 2026-07-09 |
| CVE-2026-36028 | 6.8 v3.1 | MEDIUM | 0.0021 | — | No privilegesNo user interaction | — | 2026-07-08 |
| CVE-2026-58208 | 6.8 v3.1 | MEDIUM | 0.0053 | — | NetworkNo privilegesNo user interactionVendor advisory ref | linuxfoundation | 2026-07-08 |
| CVE-2026-59804 | 6.8 v3.1 | MEDIUM | 0.0021 | — | NetworkNo privilegesMissing AuthenticationVendor advisory ref | — | 2026-07-08 |
| CVE-2026-59807 | 6.8 v3.1 | MEDIUM | 0.0029 | — | NetworkNo privilegesNo user interactionVendor advisory ref | — | 2026-07-08 |
| CVE-2026-54799 | 6.7 v3.1 | MEDIUM | — | — | No user interactionVendor advisory ref | — | 2026-07-09 |
| CVE-2026-4878 | 6.7 v3.1 | MEDIUM | 0.0019 | — | Race Condition (TOCTOU) | libcap_project, redhat | 2026-04-09 |
| CVE-2026-0287 | 6.6 v4.0 | MEDIUM | — | — | NetworkNo privilegesNo user interaction | — | 2026-07-09 |
| CVE-2026-13080 | 6.6 v3.1 | MEDIUM | 0.0071 | — | NetworkNo user interactionVendor advisory ref | — | 2026-07-09 |
| CVE-2026-12270 | 6.5 v3.1 | MEDIUM | 0.0014 | — | NetworkNo privilegesNo user interactionVendor advisory ref | — | 2026-07-09 |
| CVE-2026-12428 | 6.5 v3.1 | MEDIUM | — | — | NetworkNo user interactionMissing AuthorizationVendor advisory ref | — | 2026-07-09 |
| CVE-2026-13011 | 6.5 v3.1 | MEDIUM | 0.0027 | — | NetworkNo user interactionSQL InjectionVendor advisory ref | — | 2026-07-09 |
| CVE-2026-1365 | 6.5 v3.1 | MEDIUM | 0.0044 | — | NetworkNo user interaction | — | 2026-07-09 |
| CVE-2026-15192 | 6.5 v3.1 | MEDIUM | — | — | NetworkNo privilegesNo user interactionImproper AuthenticationMissing Authentication | — | 2026-07-09 |
| CVE-2026-33800 | 6.5 v3.1 | MEDIUM | — | — | No privilegesNo user interaction | — | 2026-07-09 |
| CVE-2026-33801 | 6.5 v3.1 | MEDIUM | — | — | No privilegesNo user interaction | — | 2026-07-09 |
| CVE-2026-33803 | 6.5 v3.1 | MEDIUM | — | — | NetworkNo privilegesNo user interaction | — | 2026-07-09 |
| CVE-2026-46413 | 6.5 v3.1 | MEDIUM | — | — | NetworkNo user interactionMissing AuthorizationVendor advisory ref | — | 2026-07-09 |
| CVE-2026-51598 | 6.5 v3.1 | MEDIUM | — | — | No privilegesNo user interactionImproper Input Validation | — | 2026-07-09 |
| CVE-2026-53961 | 6.5 v3.1 | MEDIUM | — | — | NetworkNo privilegesNo user interactionVendor advisory ref | — | 2026-07-09 |
| CVE-2026-54798 | 6.5 v3.1 | MEDIUM | — | — | NetworkNo user interactionVendor advisory ref | — | 2026-07-09 |
| CVE-2026-56460 | 6.5 v3.1 | MEDIUM | 0.0037 | — | NetworkNo user interaction | — | 2026-07-09 |
| CVE-2026-57019 | 6.5 v3.1 | MEDIUM | — | — | No privilegesNo user interaction | — | 2026-07-09 |
| CVE-2026-57020 | 6.5 v3.1 | MEDIUM | — | — | No privilegesNo user interaction | — | 2026-07-09 |
| CVE-2026-57027 | 6.5 v3.1 | MEDIUM | — | — | No privilegesNo user interactionMemory Leak | — | 2026-07-09 |
| CVE-2026-57032 | 6.5 v3.1 | MEDIUM | — | — | NetworkNo user interaction | — | 2026-07-09 |
| CVE-2026-59149 | 6.5 v3.1 | MEDIUM | — | — | NetworkNo privilegesPath TraversalVendor advisory ref | — | 2026-07-09 |
| CVE-2026-59207 | 6.5 v3.1 | MEDIUM | — | — | NetworkNo user interactionVendor advisory ref | n8n | 2026-07-09 |
| CVE-2026-59220 | 6.5 v3.1 | MEDIUM | — | — | NetworkNo user interactionVendor advisory ref | — | 2026-07-09 |
| CVE-2026-59853 | 6.5 v3.1 | MEDIUM | — | — | NetworkNo user interactionMissing AuthorizationVendor advisory ref | — | 2026-07-09 |
| CVE-2026-60094 | 6.5 v3.1 | MEDIUM | — | — | NetworkNo privilegesNo user interactionOut-of-bounds WriteVendor advisory ref | — | 2026-07-09 |
| CVE-2026-60095 | 6.5 v3.1 | MEDIUM | — | — | NetworkNo privilegesNo user interactionStack OverflowVendor advisory ref | — | 2026-07-09 |
| CVE-2026-8996 | 6.5 v3.1 | MEDIUM | 0.0027 | — | NetworkNo user interactionMissing AuthorizationVendor advisory ref | — | 2026-07-09 |
| CVE-2026-15109 | 6.5 v3.1 | MEDIUM | 0.0018 | — | NetworkNo privilegesVendor advisory ref | 2026-07-08 | |
| CVE-2026-15154 | 6.5 v3.1 | MEDIUM | 0.0021 | — | No privilegesNo user interaction | — | 2026-07-08 |
| CVE-2026-54775 | 6.5 v3.1 | MEDIUM | 0.0034 | — | NetworkNo user interactionVendor advisory ref | — | 2026-07-08 |
| CVE-2026-54777 | 6.5 v3.1 | MEDIUM | 0.0009 | — | No user interactionRace Condition (TOCTOU)Vendor advisory ref | — | 2026-07-08 |
| CVE-2026-56273 | 6.5 v3.1 | MEDIUM | 0.0033 | — | NetworkNo user interactionPath TraversalVendor advisory ref | — | 2026-07-08 |
| CVE-2026-56401 | 6.5 v3.1 | MEDIUM | 0.0030 | — | NetworkNo user interactionNULL Pointer DerefVendor advisory ref | wazuh | 2026-07-08 |
| CVE-2026-57259 | 6.5 v3.1 | MEDIUM | 0.0021 | — | NetworkNo privilegesXXE | foxit | 2026-07-08 |
| CVE-2026-58191 | 6.5 v3.1 | MEDIUM | 0.0029 | — | NetworkNo privilegesXSSVendor advisory ref | — | 2026-07-08 |
| CVE-2026-58251 | 6.5 v3.1 | MEDIUM | 0.0049 | — | NetworkNo user interactionImproper AuthorizationVendor advisory ref | — | 2026-07-08 |
| CVE-2026-58252 | 6.5 v3.1 | MEDIUM | 0.0046 | — | NetworkNo user interactionImproper AuthorizationVendor advisory ref | — | 2026-07-08 |
| CVE-2026-58494 | 6.5 v3.1 | MEDIUM | 0.0012 | — | No user interactionIncorrect AuthorizationVendor advisory ref | — | 2026-07-08 |
| CVE-2026-59805 | 6.5 v3.1 | MEDIUM | 0.0022 | — | NetworkNo user interactionMissing AuthorizationVendor advisory ref | — | 2026-07-08 |
| CVE-2026-59818 | 6.5 v3.1 | MEDIUM | 0.0036 | — | NetworkNo user interactionVendor advisory ref | — | 2026-07-08 |
| CVE-2026-60001 | 6.5 v3.1 | MEDIUM | 0.0027 | — | NetworkNo privilegesNo user interactionResource ExhaustionVendor advisory ref | openbsd | 2026-07-08 |
| CVE-2025-12799 | 6.5 v3.1 | MEDIUM | 0.0025 | — | NetworkNo privilegesNo user interactionXSS | — | 2026-07-07 |
| CVE-2026-44877 | 6.5 v3.1 | MEDIUM | 0.0028 | — | NetworkNo user interactionInformation Exposure | — | 2026-07-07 |
| CVE-2026-48892 | 6.5 v3.1 | MEDIUM | 0.0044 | — | NetworkNo user interactionInformation ExposureVendor advisory ref | apache | 2026-07-07 |
| CVE-2026-48955 | 6.5 v3.1 | MEDIUM | 0.0025 | — | NetworkNo user interaction | joomla | 2026-07-07 |
| CVE-2026-49487 | 6.5 v3.1 | MEDIUM | 0.0044 | — | NetworkNo user interactionInformation ExposureVendor advisory ref | apache | 2026-07-07 |
| CVE-2026-50811 | 6.5 v3.1 | MEDIUM | 0.0028 | — | NetworkNo privilegesNo user interactionOut-of-bounds ReadVendor advisory ref | — | 2026-07-07 |
| CVE-2026-55490 | 6.5 v3.1 | MEDIUM | 0.0065 | — | No privilegesNo user interactionVendor advisory ref | — | 2026-07-07 |
| CVE-2026-58027 | 6.5 v3.1 | MEDIUM | 0.0038 | — | NetworkNo user interactionInformation Exposure | mediawiki | 2026-07-01 |
| CVE-2026-58029 | 6.5 v3.1 | MEDIUM | 0.0054 | — | NetworkNo privilegesNo user interactionImproper Authentication | mediawiki | 2026-07-01 |
| CVE-2026-58033 | 6.5 v3.1 | MEDIUM | 0.0043 | — | NetworkNo privilegesInformation Exposure | mediawiki | 2026-07-01 |
| CVE-2026-12620 | 6.5 v3.1 | MEDIUM | 0.0024 | — | NetworkNo user interactionInformation Exposure | microchip | 2026-06-19 |
| CVE-2026-52718 | 6.5 v3.1 | MEDIUM | 0.0031 | — | NetworkNo privileges | — | 2026-06-15 |
| CVE-2026-50082 | 6.5 v3.1 | MEDIUM | 0.0022 | — | NetworkNo privilegesNo user interactionMissing AuthenticationVendor advisory ref | aqara | 2026-06-12 |
| CVE-2026-27145 | 6.5 v3.1 | MEDIUM | 0.0094 | — | NetworkNo privilegesNo user interactionVendor advisory ref | — | 2026-06-02 |
| CVE-2026-41607 | 6.5 v3.1 | MEDIUM | 0.0097 | — | NetworkNo privilegesNo user interactionOut-of-bounds ReadVendor advisory ref | apache | 2026-04-28 |
| CVE-2026-42044 | 6.5 v3.1 | MEDIUM | 0.0059 | — | NetworkNo privilegesNo user interactionVendor advisory ref | axios | 2026-04-24 |
| CVE-2026-40293 | 6.5 v3.1 | MEDIUM | 0.0028 | — | NetworkNo privilegesNo user interactionInformation ExposureVendor advisory ref | openfga | 2026-04-17 |
| CVE-2026-35469 | 6.5 v3.1 | MEDIUM | 0.0066 | — | NetworkNo user interactionResource ExhaustionVendor advisory ref | — | 2026-04-16 |
| CVE-2026-1697 | 6.5 v3.1 | MEDIUM | 0.0012 | — | NetworkNo privilegesNo user interaction | arcinfo | 2026-02-26 |
| CVE-2026-12170 | 6.4 v3.1 | MEDIUM | 0.0026 | — | NetworkNo user interactionXSSVendor advisory ref | — | 2026-07-09 |
| CVE-2026-13253 | 6.4 v3.1 | MEDIUM | 0.0021 | — | NetworkNo user interactionXSSVendor advisory ref | — | 2026-07-09 |
| CVE-2026-13771 | 6.4 v3.1 | MEDIUM | 0.0024 | — | NetworkNo user interactionXSSVendor advisory ref | — | 2026-07-09 |
| CVE-2026-14343 | 6.4 v3.1 | MEDIUM | 0.0020 | — | NetworkNo user interactionXSSVendor advisory ref | — | 2026-07-09 |
| CVE-2026-4653 | 6.4 v3.1 | MEDIUM | 0.0020 | — | NetworkNo user interactionXSSVendor advisory ref | — | 2026-07-09 |
| CVE-2026-53987 | 6.4 v3.1 | MEDIUM | — | — | NetworkXSSVendor advisory ref | — | 2026-07-09 |
| CVE-2026-6910 | 6.4 v3.1 | MEDIUM | 0.0021 | — | NetworkNo user interactionXSSVendor advisory ref | — | 2026-07-09 |
| CVE-2026-8649 | 6.4 v3.1 | MEDIUM | 0.0022 | — | NetworkVendor advisory ref | — | 2026-07-08 |
| CVE-2025-8766 | 6.4 v3.1 | MEDIUM | 0.0016 | — | No user interaction | redhat | 2026-03-13 |
| CVE-2026-15317 | 6.3 v3.1 | MEDIUM | — | — | NetworkNo privilegesSSRF | — | 2026-07-10 |
| CVE-2026-15318 | 6.3 v3.1 | MEDIUM | — | — | NetworkNo user interactionImproper AuthorizationIncorrect Authorization | — | 2026-07-10 |
| CVE-2026-15138 | 6.3 v3.1 | MEDIUM | 0.0035 | — | NetworkNo privilegesPath Traversal | — | 2026-07-09 |
| CVE-2026-15186 | 6.3 v3.1 | MEDIUM | — | — | NetworkNo user interaction | — | 2026-07-09 |
| CVE-2026-15188 | 6.3 v3.1 | MEDIUM | — | — | NetworkNo user interaction | — | 2026-07-09 |
| CVE-2026-15189 | 6.3 v3.1 | MEDIUM | — | — | NetworkNo user interactionSSRF | — | 2026-07-09 |
| CVE-2026-15191 | 6.3 v3.1 | MEDIUM | — | — | NetworkNo user interactionImproper AuthorizationAuthorization Bypass (IDOR) | — | 2026-07-09 |
| CVE-2026-15195 | 6.3 v3.1 | MEDIUM | — | — | NetworkNo user interactionCode InjectionVendor advisory ref | — | 2026-07-09 |
| CVE-2026-45788 | 6.3 v4.0 | MEDIUM | — | — | NetworkNo privilegesNo user interactionInformation ExposureVendor advisory ref | — | 2026-07-09 |
| CVE-2026-49256 | 6.3 v4.0 | MEDIUM | — | — | NetworkNo privilegesNo user interactionInformation ExposureVendor advisory ref | — | 2026-07-09 |
| CVE-2026-54004 | 6.3 v4.0 | MEDIUM | — | — | NetworkNo privilegesNo user interactionMissing AuthorizationVendor advisory ref | — | 2026-07-09 |
| CVE-2026-15044 | 6.3 v3.1 | MEDIUM | 0.0017 | — | No user interaction | — | 2026-07-08 |
| CVE-2026-15063 | 6.3 v3.1 | MEDIUM | 0.0018 | — | No user interactionMissing Authentication | — | 2026-07-08 |
| CVE-2026-15105 | 6.3 v3.1 | MEDIUM | 0.0029 | — | No privilegesNo user interactionImproper Input ValidationInsecure Deserialization | — | 2026-07-08 |
| CVE-2026-39178 | 6.3 v3.1 | MEDIUM | 0.0015 | — | NetworkNo user interactionSQL InjectionVendor advisory ref | — | 2026-07-08 |
| CVE-2026-39179 | 6.3 v3.1 | MEDIUM | 0.0015 | — | NetworkNo user interactionSQL InjectionVendor advisory ref | — | 2026-07-08 |
| CVE-2026-58518 | 6.3 v3.1 | MEDIUM | 0.0016 | — | NetworkNo privilegesCSRF | mediawiki | 2026-07-01 |
| CVE-2026-39828 | 6.3 v3.1 | MEDIUM | 0.0031 | — | NetworkNo user interactionVendor advisory ref | golang | 2026-05-22 |
| CVE-2026-6587 | 6.3 v3.1 | MEDIUM | 0.0028 | — | NetworkNo user interactionSSRF | — | 2026-04-20 |
| CVE-2026-56459 | 6.2 v3.1 | MEDIUM | 0.0016 | — | No privilegesNo user interaction | — | 2026-07-09 |
| CVE-2026-54778 | 6.2 v3.1 | MEDIUM | 0.0010 | — | No privilegesNo user interactionRace ConditionVendor advisory ref | — | 2026-07-08 |
| CVE-2026-13757 | 6.2 v3.1 | MEDIUM | 0.0011 | — | No privilegesNo user interactionUncontrolled Recursion | p11-kit_project, redhat | 2026-06-29 |
| CVE-2026-11392 | 6.1 v3.1 | MEDIUM | — | — | NetworkNo privilegesXSSVendor advisory ref | — | 2026-07-10 |
| CVE-2026-13334 | 6.1 v3.1 | MEDIUM | 0.0022 | — | NetworkNo privilegesXSSVendor advisory ref | — | 2026-07-09 |
| CVE-2026-5793 | 6.1 v3.1 | MEDIUM | 0.0025 | — | NetworkNo privilegesXSS | — | 2026-07-09 |
| CVE-2026-58303 | 6.1 v3.1 | MEDIUM | — | — | No privilegesStack Overflow | — | 2026-07-09 |
| CVE-2026-58304 | 6.1 v3.1 | MEDIUM | — | — | No privilegesOut-of-bounds ReadOut-of-bounds Write | — | 2026-07-09 |
| CVE-2026-58305 | 6.1 v3.1 | MEDIUM | — | — | No privileges | — | 2026-07-09 |
| CVE-2026-58306 | 6.1 v3.1 | MEDIUM | — | — | No privilegesHeap Overflow | — | 2026-07-09 |
| CVE-2026-58307 | 6.1 v3.1 | MEDIUM | — | — | No privilegesOut-of-bounds Read | — | 2026-07-09 |
| CVE-2026-15127 | 6.1 v3.1 | MEDIUM | 0.0016 | — | NetworkNo privilegesXSSVendor advisory ref | 2026-07-08 | |
| CVE-2026-15128 | 6.1 v3.1 | MEDIUM | 0.0016 | — | NetworkNo privilegesXSSVendor advisory ref | 2026-07-08 | |
| CVE-2026-50813 | 6.1 v3.1 | MEDIUM | 0.0011 | — | No privilegesVendor advisory ref | — | 2026-07-08 |
| CVE-2026-55877 | 6.1 v3.1 | MEDIUM | 0.0019 | — | NetworkNo privilegesXSSVendor advisory ref | — | 2026-07-08 |
| CVE-2026-57241 | 6.1 v3.1 | MEDIUM | 0.0011 | — | No privilegesOut-of-bounds Read | foxit | 2026-07-08 |
| CVE-2026-57243 | 6.1 v3.1 | MEDIUM | 0.0011 | — | No privilegesOut-of-bounds Read | foxit | 2026-07-08 |
| CVE-2026-57253 | 6.1 v3.1 | MEDIUM | 0.0011 | — | No privilegesOut-of-bounds Read | foxit | 2026-07-08 |
| CVE-2026-57255 | 6.1 v3.1 | MEDIUM | 0.0011 | — | No privilegesOut-of-bounds Read | foxit | 2026-07-08 |
| CVE-2026-57257 | 6.1 v3.1 | MEDIUM | 0.0011 | — | No privilegesOut-of-bounds Read | foxit | 2026-07-08 |
| CVE-2026-57258 | 6.1 v3.1 | MEDIUM | 0.0011 | — | No privilegesOut-of-bounds Read | foxit | 2026-07-08 |
| CVE-2026-59820 | 6.1 v4.0 | MEDIUM | 0.0032 | — | NetworkNo user interactionPath TraversalVendor advisory ref | — | 2026-07-08 |
| CVE-2026-59923 | 6.1 v3.1 | MEDIUM | 0.0020 | — | NetworkNo privilegesXSSVendor advisory ref | mistune_project | 2026-07-08 |
| CVE-2026-59926 | 6.1 v3.1 | MEDIUM | 0.0033 | — | NetworkNo privilegesXSSVendor advisory ref | mistune_project | 2026-07-08 |
| CVE-2026-59929 | 6.1 v3.1 | MEDIUM | 0.0019 | — | NetworkNo privilegesXSSVendor advisory ref | mistune_project | 2026-07-08 |
| CVE-2026-59946 | 6.1 v3.1 | MEDIUM | 0.0014 | — | No privilegesPath TraversalIncorrect PermissionsVendor advisory ref | — | 2026-07-08 |
| CVE-2026-8310 | 6.1 v3.1 | MEDIUM | 0.0015 | — | NetworkNo privilegesXSS | — | 2026-07-08 |
| CVE-2026-48949 | 6.1 v3.1 | MEDIUM | 0.0027 | — | NetworkNo privilegesXSS | joomla | 2026-07-07 |
| CVE-2026-48950 | 6.1 v3.1 | MEDIUM | 0.0027 | — | NetworkNo privilegesXSS | joomla | 2026-07-07 |
| CVE-2026-48951 | 6.1 v3.1 | MEDIUM | 0.0027 | — | NetworkNo privilegesXSS | joomla | 2026-07-07 |
| CVE-2026-48952 | 6.1 v3.1 | MEDIUM | 0.0027 | — | NetworkNo privilegesXSS | joomla | 2026-07-07 |
| CVE-2026-48953 | 6.1 v3.1 | MEDIUM | 0.0027 | — | NetworkNo privilegesXSS | joomla | 2026-07-07 |
| CVE-2026-48954 | 6.1 v3.1 | MEDIUM | 0.0027 | — | NetworkNo privilegesXSS | joomla | 2026-07-07 |
| CVE-2026-53878 | 6.1 v3.1 | MEDIUM | 0.0022 | — | NetworkNo privilegesVendor advisory ref | djangoproject | 2026-07-07 |
| CVE-2025-8591 | 6.1 v3.1 | MEDIUM | 0.0016 | — | NetworkNo privilegesXSSVendor advisory ref | wso2 | 2026-07-06 |
| CVE-2026-14358 | 6.1 v3.1 | MEDIUM | 0.0027 | — | NetworkNo privilegesXSS | mediawiki | 2026-07-01 |
| CVE-2026-58030 | 6.1 v3.1 | MEDIUM | 0.0039 | — | NetworkNo privilegesXSS | mediawiki | 2026-07-01 |
| CVE-2026-58032 | 6.1 v3.1 | MEDIUM | 0.0044 | — | NetworkNo privilegesXSS | mediawiki | 2026-07-01 |
| CVE-2026-58037 | 6.1 v3.1 | MEDIUM | 0.0039 | — | NetworkNo privilegesXSS | mediawiki | 2026-07-01 |
| CVE-2026-58038 | 6.1 v3.1 | MEDIUM | 0.0024 | — | NetworkNo privilegesXSS | mediawiki | 2026-07-01 |
| CVE-2026-58520 | 6.1 v3.1 | MEDIUM | 0.0026 | — | NetworkNo privileges | mediawiki | 2026-07-01 |
| CVE-2026-56809 | 6.1 v3.1 | MEDIUM | 0.0019 | — | NetworkNo privilegesXSS | — | 2026-06-30 |
| CVE-2026-46417 | 6.1 v3.1 | MEDIUM | 0.0021 | — | NetworkNo privilegesSSRFVendor advisory ref | angular | 2026-06-22 |
| CVE-2026-50169 | 6.1 v3.1 | MEDIUM | 0.0016 | — | NetworkNo privilegesInformation ExposureVendor advisory ref | angular | 2026-06-22 |
| CVE-2026-50171 | 6.1 v3.1 | MEDIUM | 0.0016 | — | NetworkNo privilegesResource Exhaustion (DoS)Vendor advisory ref | angular | 2026-06-22 |
| CVE-2026-50184 | 6.1 v3.1 | MEDIUM | 0.0015 | — | NetworkNo privilegesInformation ExposureVendor advisory ref | angular | 2026-06-22 |
| CVE-2026-50555 | 6.1 v3.1 | MEDIUM | 0.0017 | — | NetworkNo privilegesXSSVendor advisory ref | angular | 2026-06-22 |
| CVE-2026-50556 | 6.1 v3.1 | MEDIUM | 0.0023 | — | NetworkNo privilegesXSSVendor advisory ref | angular | 2026-06-22 |
| CVE-2026-50557 | 6.1 v3.1 | MEDIUM | 0.0021 | — | NetworkNo privilegesXSSVendor advisory ref | angular | 2026-06-22 |
| CVE-2026-52725 | 6.1 v3.1 | MEDIUM | 0.0024 | — | NetworkNo privilegesXSSVendor advisory ref | angular | 2026-06-22 |
| CVE-2026-54264 | 6.1 v3.1 | MEDIUM | 0.0023 | — | NetworkNo privilegesInformation ExposureVendor advisory ref | angular | 2026-06-22 |
| CVE-2026-54265 | 6.1 v3.1 | MEDIUM | 0.0019 | — | NetworkNo privilegesXSSVendor advisory ref | angular | 2026-06-22 |
| CVE-2026-54266 | 6.1 v3.1 | MEDIUM | 0.0009 | — | NetworkNo privilegesVendor advisory ref | angular | 2026-06-22 |
| CVE-2026-54267 | 6.1 v3.1 | MEDIUM | 0.0018 | — | NetworkNo privilegesXSSVendor advisory ref | angular | 2026-06-22 |
| CVE-2026-50089 | 6.1 v3.1 | MEDIUM | 0.0015 | — | NetworkNo privilegesVendor advisory ref | aqara | 2026-06-12 |
| CVE-2026-42338 | 6.1 v3.1 | MEDIUM | 0.0047 | — | NetworkNo privilegesXSSVendor advisory ref | beaugunderson | 2026-05-12 |
| CVE-2026-1692 | 6.1 v3.1 | MEDIUM | 0.0011 | — | NetworkNo privileges | arcinfo | 2026-02-26 |
| CVE-2026-1695 | 6.1 v3.1 | MEDIUM | 0.0021 | — | NetworkNo privilegesXSS | arcinfo | 2026-02-26 |
| CVE-2026-1696 | 6.1 v3.1 | MEDIUM | 0.0014 | — | NetworkNo privilegesXSS | arcinfo | 2026-02-26 |
| CVE-2026-1698 | 6.1 v3.1 | MEDIUM | 0.0021 | — | NetworkNo privileges | arcinfo | 2026-02-26 |
| CVE-2026-0286 | 6.0 v4.0 | MEDIUM | — | — | NetworkNo user interactionOS Command Injection | — | 2026-07-09 |
| CVE-2026-59222 | 6.0 v4.0 | MEDIUM | — | — | NetworkNo user interactionInformation ExposureVendor advisory ref | — | 2026-07-09 |
| CVE-2026-5923 | 6.0 v4.0 | MEDIUM | 0.0014 | — | NetworkCSRF | — | 2026-07-08 |
| CVE-2026-12879 | 5.9 v4.0 | MEDIUM | — | — | NetworkNo user interactionVendor advisory ref | — | 2026-07-09 |
| CVE-2026-31981 | 5.9 v3.1 | MEDIUM | 0.0014 | — | NetworkXSS | — | 2026-07-09 |
| CVE-2026-33794 | 5.9 v3.1 | MEDIUM | — | — | NetworkNo privilegesNo user interaction | — | 2026-07-09 |
| CVE-2026-57022 | 5.9 v3.1 | MEDIUM | — | — | NetworkNo privilegesNo user interaction | — | 2026-07-09 |
| CVE-2026-57030 | 5.9 v3.1 | MEDIUM | — | — | NetworkNo privilegesNo user interactionRace Condition | — | 2026-07-09 |
| CVE-2026-54773 | 5.9 v3.1 | MEDIUM | 0.0024 | — | NetworkNo privilegesNo user interactionVendor advisory ref | — | 2026-07-08 |
| CVE-2026-54779 | 5.9 v3.1 | MEDIUM | 0.0027 | — | NetworkNo privilegesNo user interactionVendor advisory ref | — | 2026-07-08 |
| CVE-2026-58501 | 5.9 v3.1 | MEDIUM | 0.0025 | — | NetworkNo privilegesNo user interactionSSRFVendor advisory ref | — | 2026-07-08 |
| CVE-2026-5922 | 5.9 v4.0 | MEDIUM | 0.0023 | — | NetworkXSS | — | 2026-07-08 |
| CVE-2026-59924 | 5.9 v3.1 | MEDIUM | 0.0033 | — | NetworkNo privilegesNo user interactionPath TraversalVendor advisory ref | mistune_project | 2026-07-08 |
| CVE-2026-59999 | 5.9 v3.1 | MEDIUM | 0.0013 | — | NetworkNo privilegesNo user interactionVendor advisory ref | openbsd | 2026-07-08 |
| CVE-2026-12352 | 5.9 v3.1 | MEDIUM | 0.0026 | — | NetworkNo privilegesNo user interactionIncorrect Authorization | — | 2026-07-07 |
| CVE-2026-58471 | 5.9 v3.1 | MEDIUM | 0.0022 | — | NetworkNo privilegesHeap OverflowVendor advisory ref | gnu | 2026-07-07 |
| CVE-2026-58472 | 5.9 v3.1 | MEDIUM | 0.0022 | — | NetworkNo privilegesInteger OverflowVendor advisory ref | gnu | 2026-07-07 |
| CVE-2026-54291 | 5.9 v3.1 | MEDIUM | 0.0025 | — | NetworkNo privilegesNo user interactionVendor advisory ref | postgresql | 2026-07-06 |
| CVE-2026-55736 | 5.9 v4.0 | MEDIUM | 0.0015 | — | No privilegesNo user interactionVendor advisory ref | — | 2026-06-23 |
| CVE-2026-10852 | 5.9 v3.1 | MEDIUM | 0.0027 | — | NetworkNo privilegesNo user interactionNULL Pointer Deref | ibm | 2026-06-22 |
| CVE-2025-15366 | 5.9 v4.0 | MEDIUM | 0.0034 | — | NetworkNo user interactionCommand InjectionVendor advisory ref | — | 2026-01-20 |
| CVE-2026-0278 | 5.8 v4.0 | MEDIUM | — | — | No user interaction | — | 2026-07-09 |
| CVE-2026-57054 | 5.8 v3.1 | MEDIUM | — | — | NetworkNo privilegesNo user interaction | — | 2026-07-09 |
| CVE-2026-42581 | 5.8 v3.1 | MEDIUM | 0.0052 | — | NetworkNo privilegesNo user interactionVendor advisory ref | netty | 2026-05-13 |
| CVE-2026-0277 | 5.7 v4.0 | MEDIUM | — | — | No privileges | — | 2026-07-09 |
| CVE-2026-58024 | 5.7 v3.1 | MEDIUM | 0.0038 | — | NetworkInformation Exposure | mediawiki | 2026-07-01 |
| CVE-2026-58026 | 5.7 v3.1 | MEDIUM | 0.0038 | — | NetworkInformation Exposure | mediawiki | 2026-07-01 |
| CVE-2026-59857 | 5.6 v4.0 | MEDIUM | — | — | No privilegesOut-of-bounds WriteVendor advisory ref | — | 2026-07-09 |
| CVE-2026-44918 | 5.5 v3.1 | MEDIUM | — | — | NetworkNo user interactionMissing Authorization | — | 2026-07-10 |
| CVE-2026-33802 | 5.5 v3.1 | MEDIUM | — | — | No user interactionMissing Authorization | — | 2026-07-09 |
| CVE-2026-57025 | 5.5 v3.1 | MEDIUM | — | — | No user interaction | — | 2026-07-09 |
| CVE-2026-58198 | 5.5 v3.1 | MEDIUM | — | — | No user interactionRace Condition (TOCTOU)Vendor advisory ref | — | 2026-07-09 |
| CVE-2026-15163 | 5.5 v3.1 | MEDIUM | 0.0012 | — | No privileges | wireshark | 2026-07-08 |
| CVE-2026-15164 | 5.5 v3.1 | MEDIUM | 0.0010 | — | No privilegesHeap Overflow | wireshark | 2026-07-08 |
| CVE-2026-15165 | 5.5 v3.1 | MEDIUM | 0.0014 | — | No privilegesHeap Overflow | wireshark | 2026-07-08 |
| CVE-2026-15166 | 5.5 v3.1 | MEDIUM | 0.0014 | — | No privilegesStack Overflow | wireshark | 2026-07-08 |
| CVE-2026-15169 | 5.5 v3.1 | MEDIUM | 0.0014 | — | No privilegesHeap Overflow | wireshark | 2026-07-08 |
| CVE-2026-15170 | 5.5 v3.1 | MEDIUM | 0.0014 | — | No privilegesHeap Overflow | wireshark | 2026-07-08 |
| CVE-2026-15171 | 5.5 v3.1 | MEDIUM | 0.0010 | — | No privilegesNULL Pointer Deref | wireshark | 2026-07-08 |
| CVE-2026-15172 | 5.5 v3.1 | MEDIUM | 0.0011 | — | No privileges | wireshark | 2026-07-08 |
| CVE-2026-15174 | 5.5 v3.1 | MEDIUM | 0.0010 | — | No privilegesHeap Overflow | wireshark | 2026-07-08 |
| CVE-2026-44512 | 5.5 v3.1 | MEDIUM | 0.0017 | — | No privilegesNULL Pointer DerefVendor advisory ref | — | 2026-07-08 |
| CVE-2026-50812 | 5.5 v3.1 | MEDIUM | 0.0011 | — | No user interactionNULL Pointer DerefVendor advisory ref | — | 2026-07-08 |
| CVE-2026-14867 | 5.5 v3.1 | MEDIUM | 0.0009 | — | No user interaction | arcinfo | 2026-07-07 |
| CVE-2026-14868 | 5.5 v3.1 | MEDIUM | 0.0005 | — | No user interaction | arcinfo | 2026-07-07 |
| CVE-2026-50810 | 5.5 v3.1 | MEDIUM | 0.0017 | — | No privilegesNULL Pointer DerefVendor advisory ref | — | 2026-07-07 |
| CVE-2022-4312 | 5.5 v3.1 | MEDIUM | 0.0011 | — | No user interactionWeak Credential Protection | arcinfo | 2022-12-12 |
| CVE-2022-2569 | 5.5 v3.1 | MEDIUM | 0.0013 | — | No user interaction | arcinfo | 2022-08-24 |
| CVE-2026-11818 | 5.4 v3.1 | MEDIUM | — | — | NetworkNo user interactionMissing AuthorizationVendor advisory ref | — | 2026-07-10 |
| CVE-2026-15320 | 5.4 v3.1 | MEDIUM | — | — | NetworkNo user interactionMissing AuthorizationIncorrect Authorization | — | 2026-07-10 |
| CVE-2026-5069 | 5.4 v3.1 | MEDIUM | — | — | NetworkNo user interactionIncorrect AuthorizationVendor advisory ref | — | 2026-07-10 |
| CVE-2026-5005 | 5.4 v3.1 | MEDIUM | — | — | NetworkXSS | — | 2026-07-09 |
| CVE-2026-53962 | 5.4 v3.1 | MEDIUM | — | — | NetworkXSSVendor advisory ref | — | 2026-07-09 |
| CVE-2026-56458 | 5.4 v3.1 | MEDIUM | 0.0023 | — | NetworkNo privileges | — | 2026-07-09 |
| CVE-2026-58144 | 5.4 v3.1 | MEDIUM | — | — | NetworkXSS | — | 2026-07-09 |
| CVE-2026-59212 | 5.4 v3.1 | MEDIUM | — | — | NetworkNo user interactionIncorrect AuthorizationVendor advisory ref | — | 2026-07-09 |
| CVE-2026-59225 | 5.4 v3.1 | MEDIUM | — | — | NetworkNo user interactionMissing AuthorizationVendor advisory ref | openwebui | 2026-07-09 |
| CVE-2026-60120 | 5.4 v3.1 | MEDIUM | — | — | NetworkXSSVendor advisory ref | — | 2026-07-09 |
| CVE-2026-56359 | 5.4 v3.1 | MEDIUM | 0.0014 | — | NetworkXSSVendor advisory ref | n8n | 2026-07-08 |
| CVE-2026-58211 | 5.4 v3.1 | MEDIUM | 0.0031 | — | NetworkNo user interactionIncorrect AuthorizationVendor advisory ref | linuxfoundation | 2026-07-08 |
| CVE-2026-8315 | 5.4 v3.1 | MEDIUM | 0.0013 | — | NetworkXSS | — | 2026-07-08 |
| CVE-2026-36162 | 5.4 v3.1 | MEDIUM | 0.0014 | — | NetworkXSSVendor advisory ref | — | 2026-07-07 |
| CVE-2026-36163 | 5.4 v3.1 | MEDIUM | 0.0017 | — | NetworkXSSVendor advisory ref | — | 2026-07-07 |
| CVE-2026-55435 | 5.4 v3.1 | MEDIUM | 0.0032 | — | NetworkNo user interactionIncorrect AuthorizationVendor advisory ref | coder | 2026-07-07 |
| CVE-2026-38979 | 5.4 v3.1 | MEDIUM | 0.0014 | — | NetworkNo privilegesVendor advisory ref | — | 2026-07-06 |
| CVE-2026-58028 | 5.4 v3.1 | MEDIUM | 0.0039 | — | NetworkXSS | mediawiki | 2026-07-01 |
| CVE-2026-58031 | 5.4 v3.1 | MEDIUM | 0.0023 | — | NetworkXSS | mediawiki | 2026-07-01 |
| CVE-2026-12619 | 5.4 v3.1 | MEDIUM | 0.0023 | — | NetworkXSS | microchip | 2026-06-19 |
| CVE-2026-12621 | 5.4 v3.1 | MEDIUM | 0.0023 | — | NetworkXSS | microchip | 2026-06-19 |
| CVE-2026-12622 | 5.4 v3.1 | MEDIUM | 0.0021 | — | Network | microchip | 2026-06-19 |
| CVE-2026-12298 | 5.4 v3.1 | MEDIUM | 0.0031 | — | NetworkNo privilegesOut-of-bounds ReadUse After FreeOut-of-bounds WriteVendor advisory ref | mozilla | 2026-06-16 |
| CVE-2026-12299 | 5.4 v3.1 | MEDIUM | 0.0031 | — | NetworkNo privilegesVendor advisory ref | mozilla | 2026-06-16 |
| CVE-2026-46546 | 5.4 v3.1 | MEDIUM | 0.0023 | — | NetworkInjectionXSSVendor advisory ref | frappe | 2026-06-10 |
| CVE-2026-11869 | 5.3 v3.1 | MEDIUM | 0.0014 | — | NetworkNo privilegesNo user interactionVendor advisory ref | — | 2026-07-09 |
| CVE-2026-11875 | 5.3 v3.1 | MEDIUM | 0.0014 | — | NetworkNo privilegesNo user interactionVendor advisory ref | — | 2026-07-09 |
| CVE-2026-12406 | 5.3 v3.1 | MEDIUM | 0.0032 | — | NetworkNo privilegesNo user interactionMissing AuthorizationVendor advisory ref | — | 2026-07-09 |
| CVE-2026-12418 | 5.3 v3.1 | MEDIUM | 0.0024 | — | NetworkNo privilegesNo user interactionAuthorization Bypass (IDOR)Vendor advisory ref | — | 2026-07-09 |
| CVE-2026-12516 | 5.3 v3.1 | MEDIUM | 0.0013 | — | NetworkNo privilegesNo user interactionVendor advisory ref | — | 2026-07-09 |
| CVE-2026-12517 | 5.3 v3.1 | MEDIUM | 0.0013 | — | NetworkNo privilegesNo user interactionVendor advisory ref | — | 2026-07-09 |
| CVE-2026-13450 | 5.3 v3.1 | MEDIUM | 0.0041 | — | NetworkNo privilegesNo user interactionAuthorization Bypass (IDOR) | — | 2026-07-09 |
| CVE-2026-15182 | 5.3 v3.1 | MEDIUM | — | — | No user interactionMemory CorruptionHeap OverflowVendor advisory ref | — | 2026-07-09 |
| CVE-2026-15193 | 5.3 v3.1 | MEDIUM | — | — | No user interactionCommand InjectionOS Command Injection | — | 2026-07-09 |
| CVE-2026-15204 | 5.3 v3.1 | MEDIUM | — | — | NetworkNo privilegesNo user interactionPath Traversal | — | 2026-07-09 |
| CVE-2026-31983 | 5.3 v3.1 | MEDIUM | 0.0024 | — | NetworkNo privilegesNo user interactionMissing Authentication | — | 2026-07-09 |
| CVE-2026-44342 | 5.3 v3.1 | MEDIUM | — | — | NetworkNo privilegesCSRFVendor advisory ref | — | 2026-07-09 |
| CVE-2026-45780 | 5.3 v3.1 | MEDIUM | — | — | NetworkNo privilegesNo user interactionInformation ExposureVendor advisory ref | — | 2026-07-09 |
| CVE-2026-49274 | 5.3 v4.0 | MEDIUM | — | — | NetworkNo user interactionMissing AuthorizationVendor advisory ref | — | 2026-07-09 |
| CVE-2026-55605 | 5.3 v3.1 | MEDIUM | — | — | NetworkNo privilegesNo user interactionMissing AuthenticationVendor advisory ref | — | 2026-07-09 |
| CVE-2026-57021 | 5.3 v3.1 | MEDIUM | — | — | NetworkNo privilegesNo user interactionOut-of-bounds Write | — | 2026-07-09 |
| CVE-2026-57024 | 5.3 v3.1 | MEDIUM | — | — | NetworkNo privilegesNo user interaction | — | 2026-07-09 |
| CVE-2026-57029 | 5.3 v3.1 | MEDIUM | — | — | No privilegesNo user interaction | — | 2026-07-09 |
| CVE-2026-59218 | 5.3 v3.1 | MEDIUM | — | — | NetworkNo privilegesNo user interactionVendor advisory ref | — | 2026-07-09 |
| CVE-2026-59817 | 5.3 v3.1 | MEDIUM | — | — | NetworkNo privilegesNo user interactionAuthorization Bypass (IDOR)Vendor advisory ref | — | 2026-07-09 |
| CVE-2026-59828 | 5.3 v3.1 | MEDIUM | — | — | NetworkNo privilegesNo user interactionInformation ExposureVendor advisory ref | — | 2026-07-09 |
| CVE-2026-61344 | 5.3 v3.1 | MEDIUM | — | — | NetworkNo privilegesNo user interactionMissing Authentication | — | 2026-07-09 |
| CVE-2026-61474 | 5.3 v4.0 | MEDIUM | — | — | NetworkNo user interactionIncorrect AuthorizationVendor advisory ref | — | 2026-07-09 |
| CVE-2026-7558 | 5.3 v3.1 | MEDIUM | 0.0026 | — | NetworkNo privilegesNo user interactionMissing AuthorizationVendor advisory ref | — | 2026-07-09 |
| CVE-2026-9021 | 5.3 v3.1 | MEDIUM | — | — | NetworkNo privilegesNo user interactionMissing AuthorizationVendor advisory ref | — | 2026-07-09 |
| CVE-2026-9027 | 5.3 v3.1 | MEDIUM | — | — | NetworkNo privilegesNo user interactionVendor advisory ref | — | 2026-07-09 |
| CVE-2026-9028 | 5.3 v3.1 | MEDIUM | — | — | NetworkNo privilegesNo user interactionMissing AuthorizationVendor advisory ref | — | 2026-07-09 |
| CVE-2026-15035 | 5.3 v3.1 | MEDIUM | 0.0062 | — | No user interactionInjectionCommand InjectionOS Command Injection | bentoml | 2026-07-08 |
| CVE-2026-44332 | 5.3 v3.1 | MEDIUM | 0.0052 | — | NetworkNo privilegesNo user interactionVendor advisory ref | — | 2026-07-08 |
| CVE-2026-45045 | 5.3 v3.1 | MEDIUM | 0.0046 | — | NetworkNo privilegesNo user interactionVendor advisory ref | — | 2026-07-08 |
| CVE-2026-58254 | 5.3 v4.0 | MEDIUM | 0.0043 | — | NetworkNo user interactionIncorrect AuthorizationVendor advisory ref | — | 2026-07-08 |
| CVE-2026-59868 | 5.3 v3.1 | MEDIUM | 0.0029 | — | NetworkNo privilegesNo user interactionVendor advisory ref | — | 2026-07-08 |
| CVE-2026-59875 | 5.3 v3.1 | MEDIUM | 0.0029 | — | NetworkNo privilegesNo user interactionVendor advisory ref | — | 2026-07-08 |
| CVE-2026-59927 | 5.3 v3.1 | MEDIUM | 0.0030 | — | NetworkNo privilegesNo user interactionUncontrolled RecursionVendor advisory ref | mistune_project | 2026-07-08 |
| CVE-2026-59938 | 5.3 v3.1 | MEDIUM | 0.0033 | — | NetworkNo privilegesNo user interactionVendor advisory ref | pypdf_project | 2026-07-08 |
| CVE-2026-60124 | 5.3 v4.0 | MEDIUM | 0.0022 | — | NetworkNo user interactionMissing AuthorizationVendor advisory ref | — | 2026-07-08 |
| CVE-2026-60125 | 5.3 v4.0 | MEDIUM | 0.0021 | — | NetworkNo user interactionIncorrect AuthorizationVendor advisory ref | — | 2026-07-08 |
| CVE-2026-14940 | 5.3 v3.1 | MEDIUM | 0.0031 | — | NetworkNo privilegesNo user interactionHeap Overflow | redhat | 2026-07-07 |
| CVE-2026-58470 | 5.3 v3.1 | MEDIUM | 0.0025 | — | NetworkNo privilegesNo user interactionInteger OverflowVendor advisory ref | gnu | 2026-07-07 |
| CVE-2026-13122 | 5.3 v3.1 | MEDIUM | 0.0047 | — | NetworkNo user interaction | openvpn | 2026-07-06 |
| CVE-2026-58203 | 5.3 v3.1 | MEDIUM | 0.0013 | — | No user interactionPath TraversalResource Exhaustion (DoS)Vendor advisory ref | pydantic | 2026-07-06 |
| CVE-2026-7828 | 5.3 v3.1 | MEDIUM | 0.0106 | — | NetworkNo privilegesNo user interactionInteger Overflow | uvnc | 2026-07-01 |
| CVE-2026-53550 | 5.3 v3.1 | MEDIUM | 0.0026 | — | NetworkNo privilegesNo user interactionVendor advisory ref | nodeca | 2026-06-22 |
| CVE-2026-12329 | 5.3 v3.1 | MEDIUM | 0.0033 | — | NetworkNo privilegesNo user interactionMemory CorruptionUse After FreeNULL Pointer DerefVendor advisory ref | mozilla | 2026-06-16 |
| CVE-2026-48043 | 5.3 v3.1 | MEDIUM | 0.0059 | — | NetworkNo privilegesNo user interactionResource Exhaustion (DoS)Memory LeakVendor advisory ref | netty | 2026-06-12 |
| CVE-2026-45292 | 5.3 v3.1 | MEDIUM | 0.0069 | — | NetworkNo privilegesNo user interactionResource ExhaustionVendor advisory ref | — | 2026-05-28 |
| CVE-2026-42015 | 5.3 v3.1 | MEDIUM | 0.0073 | — | NetworkNo privilegesNo user interaction | — | 2026-05-26 |
| CVE-2026-39835 | 5.3 v3.1 | MEDIUM | 0.0039 | — | NetworkNo privilegesNo user interactionNULL Pointer DerefVendor advisory ref | golang | 2026-05-22 |
| CVE-2026-41606 | 5.3 v3.1 | MEDIUM | 0.0114 | — | NetworkNo privilegesNo user interactionUncontrolled RecursionVendor advisory ref | apache | 2026-04-28 |
| CVE-2025-13465 | 5.3 v3.1 | MEDIUM | 0.0154 | — | NetworkNo privilegesNo user interactionVendor advisory ref | lodash | 2026-01-21 |
| CVE-2026-55590 | 5.1 v4.0 | MEDIUM | — | — | NetworkNo privilegesVendor advisory ref | — | 2026-07-09 |
| CVE-2026-48956 | 5.0 v3.1 | MEDIUM | 0.0025 | — | NetworkNo user interaction | joomla | 2026-07-07 |
| CVE-2026-44936 | 5.0 v3.1 | MEDIUM | 0.0037 | — | NetworkNo user interactionSSRFVendor advisory ref | suse | 2026-07-06 |
| CVE-2026-14342 | 4.9 v3.1 | MEDIUM | 0.0027 | — | NetworkNo user interactionSQL InjectionVendor advisory ref | — | 2026-07-09 |
| CVE-2026-43752 | 4.9 v3.1 | MEDIUM | — | — | NetworkNo user interactionUnrestricted Upload | — | 2026-07-09 |
| CVE-2026-59854 | 4.9 v3.1 | MEDIUM | — | — | NetworkNo user interactionVendor advisory ref | — | 2026-07-09 |
| CVE-2026-11827 | 4.9 v3.1 | MEDIUM | 0.0026 | — | NetworkNo user interactionWeak Credential ProtectionVendor advisory ref | gitlab | 2026-07-08 |
| CVE-2026-14362 | 4.9 v3.1 | MEDIUM | 0.0025 | — | NetworkNo user interactionResource Exhaustion | — | 2026-07-08 |
| CVE-2026-48492 | 4.9 v4.0 | MEDIUM | 0.0040 | — | NetworkNo user interactionMissing AuthorizationVendor advisory ref | — | 2026-07-08 |
| CVE-2026-48947 | 4.9 v3.1 | MEDIUM | 0.0025 | — | NetworkNo user interaction | joomla | 2026-07-07 |
| CVE-2026-54800 | 4.8 v3.1 | MEDIUM | — | — | NetworkNo privilegesNo user interactionVendor advisory ref | — | 2026-07-09 |
| CVE-2026-59876 | 4.8 v3.1 | MEDIUM | 0.0022 | — | NetworkNo privilegesNo user interactionVendor advisory ref | — | 2026-07-08 |
| CVE-2026-59897 | 4.8 v3.1 | MEDIUM | 0.0012 | — | NetworkNo privilegesNo user interactionVendor advisory ref | — | 2026-07-08 |
| CVE-2026-59998 | 4.8 v3.1 | MEDIUM | 0.0018 | — | NetworkNo privilegesNo user interactionVendor advisory ref | openbsd | 2026-07-08 |
| CVE-2026-12948 | 4.8 v4.0 | MEDIUM | 0.0027 | — | NetworkXSS | — | 2026-07-07 |
| CVE-2026-53877 | 4.8 v3.1 | MEDIUM | 0.0029 | — | NetworkNo privilegesNo user interactionVendor advisory ref | djangoproject | 2026-07-07 |
| CVE-2024-1248 | 4.8 v3.1 | MEDIUM | 0.0021 | — | NetworkNo privilegesNo user interactionVendor advisory ref | wso2 | 2026-07-04 |
| CVE-2026-13373 | 4.8 v3.1 | MEDIUM | 0.0029 | — | NetworkXSSVendor advisory ref | watchguard | 2026-07-03 |
| CVE-2026-13374 | 4.8 v3.1 | MEDIUM | 0.0029 | — | NetworkXSSVendor advisory ref | watchguard | 2026-07-03 |
| CVE-2026-13375 | 4.8 v3.1 | MEDIUM | 0.0029 | — | NetworkXSSVendor advisory ref | watchguard | 2026-07-03 |
| CVE-2026-13376 | 4.8 v3.1 | MEDIUM | 0.0029 | — | NetworkXSSVendor advisory ref | watchguard | 2026-07-03 |
| CVE-2026-13377 | 4.8 v3.1 | MEDIUM | 0.0029 | — | NetworkXSSVendor advisory ref | watchguard | 2026-07-03 |
| CVE-2026-44040 | 4.8 v3.1 | MEDIUM | 0.0028 | — | NetworkNo privilegesNo user interaction | uvnc | 2026-07-01 |
| CVE-2026-58034 | 4.8 v3.1 | MEDIUM | 0.0025 | — | NetworkXSS | mediawiki | 2026-07-01 |
| CVE-2026-58035 | 4.8 v3.1 | MEDIUM | 0.0025 | — | NetworkXSS | mediawiki | 2026-07-01 |
| CVE-2026-42041 | 4.8 v3.1 | MEDIUM | 0.0061 | — | NetworkNo privilegesNo user interactionImproper AuthenticationVendor advisory ref | axios | 2026-04-24 |
| CVE-2026-40175 | 4.8 v3.1 | MEDIUM | 0.0181 | — | NetworkNo privilegesNo user interactionSSRFVendor advisory ref | axios | 2026-04-10 |
| CVE-2026-0284 | 4.7 v4.0 | MEDIUM | — | — | NetworkNo privilegesNo user interactionInjection | — | 2026-07-09 |
| CVE-2026-0285 | 4.7 v4.0 | MEDIUM | — | — | NetworkNo user interactionSSRF | — | 2026-07-09 |
| CVE-2026-57031 | 4.7 v3.1 | MEDIUM | — | — | No privilegesNo user interaction | — | 2026-07-09 |
| CVE-2026-14361 | 4.7 v3.1 | MEDIUM | 0.0010 | — | No user interaction | — | 2026-07-08 |
| CVE-2026-15173 | 4.7 v3.1 | MEDIUM | 0.0010 | — | No privilegesHeap Overflow | wireshark | 2026-07-08 |
| CVE-2026-54344 | 4.7 v3.1 | MEDIUM | 0.0017 | — | No privilegesNo user interactionOS Command InjectionVendor advisory ref | — | 2026-07-08 |
| CVE-2026-59883 | 4.7 v3.1 | MEDIUM | 0.0011 | — | NetworkNo privilegesVendor advisory ref | — | 2026-07-08 |
| CVE-2026-59947 | 4.7 v3.1 | MEDIUM | 0.0011 | — | No user interactionVendor advisory ref | — | 2026-07-08 |
| CVE-2026-10659 | 4.7 v3.1 | MEDIUM | 0.0009 | — | No user interactionNULL Pointer DerefVendor advisory ref | zephyrproject | 2026-07-07 |
| CVE-2022-4311 | 4.7 v3.1 | MEDIUM | 0.0033 | — | No user interaction | arcinfo | 2022-12-12 |
| CVE-2026-56288 | 4.6 v4.0 | MEDIUM | — | — | No privilegesNULL Pointer DerefVendor advisory ref | — | 2026-07-09 |
| CVE-2026-56289 | 4.6 v4.0 | MEDIUM | — | — | No privilegesVendor advisory ref | — | 2026-07-09 |
| CVE-2026-10834 | 4.6 v3.1 | MEDIUM | 0.0014 | — | NetworkVendor advisory ref | — | 2026-07-07 |
| CVE-2026-0283 | 4.5 v4.0 | MEDIUM | — | — | NetworkNo privilegesNo user interactionMissing Authentication | — | 2026-07-09 |
| CVE-2026-8650 | 4.5 v3.1 | MEDIUM | 0.0020 | — | No user interactionPath TraversalVendor advisory ref | progress | 2026-07-08 |
| CVE-2026-21901 | 4.4 v3.1 | MEDIUM | — | — | No user interactionNULL Pointer DerefVendor advisory ref | — | 2026-07-09 |
| CVE-2026-59831 | 4.4 v3.1 | MEDIUM | — | — | NetworkVendor advisory ref | — | 2026-07-09 |
| CVE-2026-54776 | 4.4 v3.1 | MEDIUM | 0.0011 | — | No user interactionMissing AuthenticationVendor advisory ref | — | 2026-07-08 |
| CVE-2026-14969 | 4.4 v3.1 | MEDIUM | 0.0008 | — | No user interaction | redhat | 2026-07-07 |
| CVE-2026-38973 | 4.4 v3.1 | MEDIUM | 0.0015 | — | No privilegesOut-of-bounds ReadVendor advisory ref | — | 2026-07-06 |
| CVE-2026-13728 | 4.4 v3.1 | MEDIUM | 0.0016 | — | NetworkNo user interactionHard-coded CredentialsVendor advisory ref | watchguard | 2026-07-03 |
| CVE-2026-45736 | 4.4 v3.1 | MEDIUM | 0.0072 | — | NetworkNo user interactionVendor advisory ref | ws_project | 2026-05-15 |
| CVE-2026-15329 | 4.3 v3.1 | MEDIUM | — | — | NetworkNo user interactionInformation Exposure | — | 2026-07-10 |
| CVE-2026-11359 | 4.3 v3.1 | MEDIUM | 0.0025 | — | NetworkNo user interactionMissing AuthorizationVendor advisory ref | — | 2026-07-09 |
| CVE-2026-12433 | 4.3 v3.1 | MEDIUM | 0.0043 | — | NetworkNo user interactionAuthorization Bypass (IDOR)Vendor advisory ref | — | 2026-07-09 |
| CVE-2026-15187 | 4.3 v3.1 | MEDIUM | — | — | NetworkNo user interactionCode Injection | — | 2026-07-09 |
| CVE-2026-15202 | 4.3 v3.1 | MEDIUM | — | — | NetworkNo privilegesXSSCode Injection | — | 2026-07-09 |
| CVE-2026-33799 | 4.3 v3.1 | MEDIUM | — | — | NetworkNo user interactionOut-of-bounds Write | — | 2026-07-09 |
| CVE-2026-4298 | 4.3 v3.1 | MEDIUM | — | — | NetworkNo user interactionMissing AuthorizationVendor advisory ref | — | 2026-07-09 |
| CVE-2026-59217 | 4.3 v3.1 | MEDIUM | — | — | NetworkNo user interactionMissing AuthorizationIncorrect AuthorizationVendor advisory ref | — | 2026-07-09 |
| CVE-2026-59223 | 4.3 v3.1 | MEDIUM | — | — | NetworkNo user interactionVendor advisory ref | — | 2026-07-09 |
| CVE-2026-59227 | 4.3 v3.1 | MEDIUM | — | — | NetworkNo user interactionMissing AuthorizationIncorrect AuthorizationVendor advisory ref | openwebui | 2026-07-09 |
| CVE-2026-9235 | 4.3 v3.1 | MEDIUM | — | — | NetworkNo user interactionMissing AuthorizationVendor advisory ref | — | 2026-07-09 |
| CVE-2026-9237 | 4.3 v3.1 | MEDIUM | — | — | NetworkNo user interactionMissing AuthorizationVendor advisory ref | — | 2026-07-09 |
| CVE-2026-9240 | 4.3 v3.1 | MEDIUM | — | — | NetworkNo user interactionMissing AuthorizationVendor advisory ref | — | 2026-07-09 |
| CVE-2026-15036 | 4.3 v3.1 | MEDIUM | 0.0040 | — | NetworkNo user interactionImproper AuthorizationAuthorization Bypass (IDOR) | — | 2026-07-08 |
| CVE-2026-15108 | 4.3 v3.1 | MEDIUM | 0.0010 | — | NetworkNo privilegesInteger OverflowVendor advisory ref | 2026-07-08 | |
| CVE-2026-15124 | 4.3 v3.1 | MEDIUM | 0.0017 | — | NetworkNo privilegesImproper Input ValidationVendor advisory ref | 2026-07-08 | |
| CVE-2026-15130 | 4.3 v3.1 | MEDIUM | 0.0019 | — | NetworkNo privilegesVendor advisory ref | 2026-07-08 | |
| CVE-2026-15131 | 4.3 v3.1 | MEDIUM | 0.0019 | — | NetworkNo privilegesImproper Input ValidationVendor advisory ref | 2026-07-08 | |
| CVE-2026-58209 | 4.3 v3.1 | MEDIUM | 0.0034 | — | NetworkNo user interactionIncorrect AuthorizationVendor advisory ref | — | 2026-07-08 |
| CVE-2026-58214 | 4.3 v3.1 | MEDIUM | 0.0037 | — | NetworkNo user interactionIncorrect AuthorizationVendor advisory ref | — | 2026-07-08 |
| CVE-2026-59930 | 4.3 v3.1 | MEDIUM | 0.0012 | — | NetworkNo privilegesVendor advisory ref | mistune_project | 2026-07-08 |
| CVE-2026-7492 | 4.3 v3.1 | MEDIUM | 0.0025 | — | NetworkNo user interactionMissing AuthorizationVendor advisory ref | gitlab | 2026-07-08 |
| CVE-2026-8472 | 4.3 v3.1 | MEDIUM | 0.0024 | — | NetworkNo user interactionMissing AuthorizationVendor advisory ref | — | 2026-07-08 |
| CVE-2026-48891 | 4.3 v3.1 | MEDIUM | 0.0036 | — | NetworkNo user interactionInformation ExposureVendor advisory ref | apache | 2026-07-07 |
| CVE-2026-59709 | 4.3 v3.1 | MEDIUM | 0.0020 | — | NetworkNo user interactionMissing AuthorizationVendor advisory ref | — | 2026-07-07 |
| CVE-2026-44041 | 4.3 v3.1 | MEDIUM | 0.0032 | — | NetworkNo user interactionOut-of-bounds Read | uvnc | 2026-07-01 |
| CVE-2026-58517 | 4.3 v3.1 | MEDIUM | 0.0034 | — | NetworkNo user interaction | mediawiki | 2026-07-01 |
| CVE-2025-32748 | 4.3 v3.1 | MEDIUM | 0.0017 | — | NetworkNo privileges | dell | 2026-06-17 |
| CVE-2026-1694 | 4.3 v3.1 | MEDIUM | 0.0017 | — | NetworkNo privileges | arcinfo | 2026-02-26 |
| CVE-2026-14896 | 4.2 v3.1 | MEDIUM | 0.0016 | — | NetworkNo user interactionIncorrect Authorization | — | 2026-07-08 |
| CVE-2026-59995 | 4.2 v3.1 | MEDIUM | 0.0020 | — | NetworkNo privilegesPath TraversalVendor advisory ref | openbsd | 2026-07-08 |
| CVE-2026-59996 | 4.2 v3.1 | MEDIUM | 0.0020 | — | NetworkNo privilegesPath TraversalVendor advisory ref | openbsd | 2026-07-08 |
| CVE-2026-59997 | 4.2 v3.1 | MEDIUM | 0.0016 | — | NetworkNo privilegesVendor advisory ref | openbsd | 2026-07-08 |
| CVE-2026-50179 | 4.2 v3.1 | MEDIUM | 0.0029 | — | NetworkNo privilegesVendor advisory ref | — | 2026-07-07 |
| CVE-2025-67780 | 4.2 v3.1 | MEDIUM | 0.0013 | — | No privilegesNo user interactionMissing Authentication | — | 2025-12-11 |
| CVE-2024-41597 | 4.2 v3.1 | MEDIUM | 0.0026 | — | NetworkNo privilegesCSRF | processwire | 2024-07-19 |
| CVE-2026-15326 | 3.8 v3.1 | LOW | — | — | NetworkNo user interactionPath Traversal | — | 2026-07-10 |
| CVE-2026-59269 | 3.8 v3.1 | LOW | 0.0017 | — | NetworkNo user interactionVendor advisory ref | — | 2026-07-09 |
| CVE-2026-12590 | 3.7 v3.1 | LOW | — | — | NetworkNo privilegesNo user interactionResource ExhaustionVendor advisory ref | openjsf | 2026-07-09 |
| CVE-2026-15041 | 3.7 v3.1 | LOW | 0.0030 | — | NetworkNo privilegesNo user interaction | redhat | 2026-07-08 |
| CVE-2026-54780 | 3.7 v3.1 | LOW | 0.0016 | — | NetworkNo privilegesNo user interactionVendor advisory ref | — | 2026-07-08 |
| CVE-2026-60000 | 3.7 v3.1 | LOW | 0.0034 | — | NetworkNo privilegesNo user interactionResource ExhaustionVendor advisory ref | openbsd | 2026-07-08 |
| CVE-2026-8651 | 3.7 v3.1 | LOW | 0.0022 | — | NetworkNo privilegesNo user interactionVendor advisory ref | progress | 2026-07-08 |
| CVE-2026-44042 | 3.7 v3.1 | LOW | 0.0039 | — | NetworkNo privilegesNo user interaction | uvnc | 2026-07-01 |
| CVE-2026-15311 | 3.5 v3.1 | LOW | — | — | NetworkXSSCode Injection | — | 2026-07-10 |
| CVE-2026-59213 | 3.5 v3.1 | LOW | — | — | NetworkNo user interactionVendor advisory ref | — | 2026-07-09 |
| CVE-2025-12506 | 3.5 v3.1 | LOW | 0.0018 | — | NetworkVendor advisory ref | gitlab | 2026-07-08 |
| CVE-2026-8801 | 3.5 v3.1 | LOW | 0.0025 | — | NetworkVendor advisory ref | progress | 2026-07-08 |
| CVE-2025-13475 | 3.5 v3.1 | LOW | 0.0015 | — | NetworkVendor advisory ref | wso2 | 2026-07-04 |
| CVE-2026-15184 | 3.3 v3.1 | LOW | — | — | No user interactionNULL Pointer DerefVendor advisory ref | — | 2026-07-09 |
| CVE-2026-15185 | 3.3 v3.1 | LOW | — | — | No user interactionMemory CorruptionOut-of-bounds ReadVendor advisory ref | — | 2026-07-09 |
| CVE-2026-15194 | 3.3 v3.1 | LOW | — | — | No user interactionMemory CorruptionUse After FreeVendor advisory ref | — | 2026-07-09 |
| CVE-2026-15274 | 3.3 v3.1 | LOW | — | — | No user interaction | — | 2026-07-09 |
| CVE-2026-15276 | 3.3 v3.1 | LOW | — | — | No user interaction | — | 2026-07-09 |
| CVE-2026-15115 | 3.3 v3.1 | LOW | 0.0011 | — | No privilegesImproper Input ValidationVendor advisory ref | 2026-07-08 | |
| CVE-2026-56362 | 3.3 v3.1 | LOW | 0.0019 | — | NetworkNo user interactionOut-of-bounds ReadVendor advisory ref | imagemagick | 2026-07-08 |
| CVE-2026-56374 | 3.3 v3.1 | LOW | 0.0015 | — | No privilegesOut-of-bounds ReadVendor advisory ref | imagemagick | 2026-07-08 |
| CVE-2026-14787 | 3.3 v3.1 | LOW | 0.0011 | — | No user interactionInteger OverflowVendor advisory ref | radare | 2026-07-06 |
| CVE-2026-14788 | 3.3 v3.1 | LOW | 0.0011 | — | No user interactionMemory CorruptionUse After FreeVendor advisory ref | radare | 2026-07-06 |
| CVE-2026-14789 | 3.3 v3.1 | LOW | 0.0013 | — | No user interactionMemory CorruptionStack OverflowVendor advisory ref | radare | 2026-07-06 |
| CVE-2026-14758 | 3.3 v3.1 | LOW | 0.0013 | — | No user interactionInteger OverflowVendor advisory ref | radare | 2026-07-05 |
| CVE-2026-14759 | 3.3 v3.1 | LOW | 0.0015 | — | No user interactionMemory CorruptionHeap OverflowVendor advisory ref | radare | 2026-07-05 |
| CVE-2026-14760 | 3.3 v3.1 | LOW | 0.0014 | — | No user interactionMemory CorruptionUse After FreeVendor advisory ref | radare | 2026-07-05 |
| CVE-2026-59215 | 3.1 v3.1 | LOW | — | — | NetworkNo user interactionAuthorization Bypass (IDOR)Vendor advisory ref | — | 2026-07-09 |
| CVE-2026-59226 | 3.1 v3.1 | LOW | — | — | NetworkNo user interactionImproper AuthorizationMissing AuthorizationIncorrect AuthorizationVendor advisory ref | openwebui | 2026-07-09 |
| CVE-2026-59715 | 3.1 v3.1 | LOW | — | — | NetworkNo user interactionMissing AuthenticationVendor advisory ref | openwebui | 2026-07-09 |
| CVE-2026-14966 | 3.1 v3.1 | LOW | 0.0029 | — | NetworkNo privilegesVendor advisory ref | — | 2026-07-08 |
| CVE-2026-14967 | 3.1 v3.1 | LOW | 0.0020 | — | NetworkNo privilegesPath TraversalVendor advisory ref | — | 2026-07-08 |
| CVE-2026-28378 | 3.1 v3.1 | LOW | 0.0014 | — | NetworkNo user interactionVendor advisory ref | — | 2026-07-07 |
| CVE-2026-42145 | 3.1 v3.1 | LOW | 0.0025 | — | NetworkNo user interactionUnrestricted UploadResource ExhaustionVendor advisory ref | — | 2026-07-07 |
| CVE-2026-48588 | 3.1 v3.1 | LOW | 0.0038 | — | NetworkNo privilegesVendor advisory ref | djangoproject | 2026-07-07 |
| CVE-2025-69873 | 2.9 v3.1 | LOW | 0.0049 | — | No privilegesNo user interactionResource Exhaustion (DoS)Vendor advisory ref | — | 2026-02-11 |
| CVE-2026-0282 | 2.7 v4.0 | LOW | — | — | NetworkNo privilegesNo user interactionImproper Input Validation | — | 2026-07-09 |
| CVE-2026-13151 | 2.7 v3.1 | LOW | 0.0018 | — | NetworkNo user interactionIncorrect AuthorizationVendor advisory ref | gitlab | 2026-07-08 |
| CVE-2026-6352 | 2.7 v3.1 | LOW | 0.0026 | — | NetworkNo user interactionIncorrect AuthorizationVendor advisory ref | gitlab | 2026-07-08 |
| CVE-2026-8800 | 2.7 v3.1 | LOW | 0.0018 | — | NetworkNo user interactionIncorrect AuthorizationVendor advisory ref | progress | 2026-07-08 |
| CVE-2026-15168 | 2.5 v3.1 | LOW | 0.0011 | — | No privileges | wireshark | 2026-07-08 |
| CVE-2026-15321 | 2.4 v3.1 | LOW | — | — | NetworkXSSCode InjectionVendor advisory ref | — | 2026-07-10 |
| CVE-2026-0281 | 2.1 v4.0 | LOW | — | — | NetworkNo privileges | — | 2026-07-09 |
| CVE-2026-55170 | 2.1 v4.0 | LOW | — | — | NetworkVendor advisory ref | — | 2026-07-09 |
| CVE-2026-55778 | 2.1 v4.0 | LOW | 0.0041 | — | NetworkUnrestricted UploadVendor advisory ref | — | 2026-07-08 |
| CVE-2026-59819 | 2.1 v4.0 | LOW | 0.0028 | — | NetworkNo user interactionVendor advisory ref | — | 2026-07-08 |
| CVE-2026-59821 | 2.1 v4.0 | LOW | 0.0029 | — | NetworkNo user interactionCode InjectionVendor advisory ref | — | 2026-07-08 |
| CVE-2026-0275 | 2.0 v4.0 | LOW | — | — | Privilege Management | — | 2026-07-09 |
| CVE-2026-0280 | 1.7 v4.0 | LOW | — | — | NetworkNo privilegesNo user interaction | — | 2026-07-09 |
| CVE-2026-0279 | 1.3 v4.0 | LOW | — | — | NetworkNo privilegesXSS | — | 2026-07-09 |
| CVE-2026-55542 | 1.3 v4.0 | LOW | 0.0036 | — | NetworkNo user interactionMissing AuthorizationVendor advisory ref | — | 2026-07-08 |
| CVE-2026-0276 | 1.1 v4.0 | LOW | — | — | No user interactionPrivilege Management | — | 2026-07-09 |
| CVE-2026-55616 | — | — | — | — | — | 2026-07-10 | |
| CVE-2025-45422 | — | — | — | — | — | 2026-07-09 | |
| CVE-2026-13461 | — | — | — | — | — | 2026-07-09 | |
| CVE-2026-14278 | — | — | — | — | — | 2026-07-09 | |
| CVE-2026-31267 | — | — | — | — | — | 2026-07-09 | |
| CVE-2026-38076 | — | — | — | — | — | 2026-07-09 | |
| CVE-2026-39243 | — | — | — | — | — | 2026-07-09 | |
| CVE-2026-39245 | — | — | — | — | — | 2026-07-09 | |
| CVE-2026-39246 | — | — | — | — | — | 2026-07-09 | |
| CVE-2026-51597 | — | — | — | — | — | 2026-07-09 | |
| CVE-2026-51599 | — | — | — | — | — | 2026-07-09 | |
| CVE-2026-51601 | — | — | — | — | — | 2026-07-09 | |
| CVE-2026-51923 | — | — | — | — | — | 2026-07-09 | |
| CVE-2026-51924 | — | — | — | — | — | 2026-07-09 | |
| CVE-2026-51925 | — | — | — | — | — | 2026-07-09 | |
| CVE-2026-51926 | — | — | — | — | — | 2026-07-09 | |
| CVE-2026-57501 | 0.0 v3.1 | NONE | — | — | NetworkNo privilegesVendor advisory ref | — | 2026-07-09 |
| CVE-2026-58125 | — | — | — | — | — | 2026-07-09 | |
| CVE-2026-40500 | — | — | 0.0039 | — | — | 2026-04-15 | |
| CVE-2011-4042 | — | — | 0.0645 | — | EPSS high | arcinfo | 2012-04-03 |
| CVE-2011-4043 | — | — | 0.0744 | — | EPSS high | arcinfo | 2012-04-03 |
| CVE-2011-4044 | — | — | 0.2673 | — | EPSS high | arcinfo | 2012-04-03 |
| CVE-2011-4045 | — | — | 0.0370 | — | Memory Corruption | arcinfo | 2012-04-03 |