CVE Records by CVSS Severity — MEDIUM

Name: Quanteta CVE Tracker — MEDIUM severity
Creator: Quanteta Data Lab
License: https://creativecommons.org/licenses/by/4.0/

205 records (Showing 100)

Records grouped by their official CVSS v3 severity band as assigned by NVD. Severity is the published CVSS value, not a Quanteta assessment.

Source data as of: 2026-04-17 06:05:21 UTC

CRITICAL HIGH MEDIUM LOW NONE KEV Latest

#	CVE ID	CVSS	Severity	EPSS	KEV	Signals	Affected vendors	Published
1	CVE-2026-32265	6.9 v4.0	MEDIUM	0.0002	—	NetworkNo privilegesNo user interactionInformation ExposureVendor advisory ref	—	2026-03-18
2	CVE-2026-3497	6.9 v4.0	MEDIUM	0.0003	—	NetworkNo privilegesNo user interaction	—	2026-03-12
3	CVE-2026-40249	6.9 v4.0	MEDIUM	—	—	NetworkNo privilegesNo user interactionVendor advisory ref	—	2026-04-16
4	CVE-2026-40260	6.9 v4.0	MEDIUM	—	—	NetworkNo privilegesNo user interactionVendor advisory ref	—	2026-04-17
5	CVE-2026-20050	6.8 v3.1	MEDIUM	0.0015	—	NetworkNo privilegesNo user interactionVendor advisory ref	cisco	2026-03-04
6	CVE-2026-21003	6.8 v3.1	MEDIUM	0.0004	—	No privilegesNo user interaction	samsung	2026-04-13
7	CVE-2026-35586	6.8 v3.1	MEDIUM	0.0002	—	NetworkNo user interactionIncorrect AuthorizationVendor advisory ref	pyload-ng_project	2026-04-07
8	CVE-2026-40191	6.8 v4.0	MEDIUM	0.0001	—	No user interactionIncorrect AuthorizationVendor advisory ref	—	2026-04-10
9	CVE-2026-40253	6.8 v3.1	MEDIUM	—	—	No privilegesNo user interactionOut-of-bounds ReadVendor advisory ref	—	2026-04-16
10	CVE-2026-33791	6.7 v3.1	MEDIUM	0.0006	—	No user interactionOS Command Injection	juniper	2026-04-09
11	CVE-2025-43937	6.6 v3.1	MEDIUM	—	—		—	2026-04-16
12	CVE-2017-1000100	6.5 v3.1	MEDIUM	0.0096	—	NetworkNo privilegesInformation Exposure	haxx	2017-10-05
13	CVE-2017-1000101	6.5 v3.1	MEDIUM	0.0062	—	NetworkNo privilegesMemory Corruption	haxx	2017-10-05
14	CVE-2019-25600	6.5 v3.1	MEDIUM	0.0005	—	NetworkNo privilegesOut-of-bounds WriteVendor advisory ref	—	2026-03-22
15	CVE-2019-25610	6.5 v3.1	MEDIUM	0.0027	—	NetworkNo user interactionPath TraversalVendor advisory ref	—	2026-03-22
16	CVE-2021-22922	6.5 v3.1	MEDIUM	0.0015	—	NetworkNo privilegesVendor advisory ref	fedoraproject, oracle, haxx, splunk, netapp, siemens	2021-08-05
17	CVE-2026-22616	6.5 v3.1	MEDIUM	0.0004	—	NetworkNo privilegesNo user interaction	—	2026-04-16
18	CVE-2026-30480	6.5 v3.1	MEDIUM	0.0002	—	NetworkNo user interaction	—	2026-04-14
19	CVE-2026-30870	6.5 v3.1	MEDIUM	0.0004	—	NetworkNo user interactionImproper AuthorizationVendor advisory ref	—	2026-03-10
20	CVE-2026-33703	6.5 v3.1	MEDIUM	0.0004	—	NetworkNo user interactionAuthorization Bypass (IDOR)Vendor advisory ref	chamilo	2026-04-10
21	CVE-2026-33708	6.5 v3.1	MEDIUM	0.0003	—	NetworkNo user interactionMissing AuthorizationVendor advisory ref	chamilo	2026-04-10
22	CVE-2026-33736	6.5 v3.1	MEDIUM	0.0003	—	NetworkNo user interactionAuthorization Bypass (IDOR)Vendor advisory ref	chamilo	2026-04-10
23	CVE-2026-34531	6.5 v3.1	MEDIUM	0.0004	—	NetworkNo privilegesNo user interactionImproper AuthenticationVendor advisory ref	miguelgrinberg	2026-04-01
24	CVE-2026-3488	6.5 v3.1	MEDIUM	—	—	NetworkNo privilegesNo user interactionMissing AuthorizationVendor advisory ref	—	2026-04-17
25	CVE-2026-34978	6.5 v3.1	MEDIUM	0.0008	—	NetworkNo privilegesNo user interactionPath TraversalVendor advisory ref	openprinting	2026-04-03
26	CVE-2026-35492	6.5 v3.1	MEDIUM	0.0001	—	NetworkNo user interactionPath TraversalVendor advisory ref	—	2026-04-07
27	CVE-2026-35584	6.5 v3.1	MEDIUM	0.0007	—	NetworkNo privilegesNo user interactionMissing AuthenticationAuthorization Bypass (IDOR)Vendor advisory ref	freescout	2026-04-07
28	CVE-2026-35627	6.5 v3.1	MEDIUM	0.0010	—	NetworkNo privilegesNo user interactionVendor advisory ref	openclaw	2026-04-09
29	CVE-2026-35636	6.5 v3.1	MEDIUM	0.0003	—	NetworkNo user interactionVendor advisory ref	openclaw	2026-04-09
30	CVE-2026-3773	6.5 v3.1	MEDIUM	0.0001	—	NetworkNo user interactionSQL InjectionVendor advisory ref	—	2026-04-16
31	CVE-2026-38533	6.5 v3.1	MEDIUM	0.0003	—	NetworkNo user interactionImproper AuthorizationVendor advisory ref	—	2026-04-14
32	CVE-2026-3861	6.5 v3.1	MEDIUM	0.0001	—	NetworkNo privileges	—	2026-04-16
33	CVE-2026-40107	6.5 v3.1	MEDIUM	0.0006	—	NetworkNo privilegesSSRFVendor advisory ref	b3log	2026-04-09
34	CVE-2026-40734	6.5 v3.1	MEDIUM	0.0003	—	NetworkXSSVendor advisory ref	—	2026-04-15
35	CVE-2026-4666	6.5 v3.1	MEDIUM	—	—	NetworkNo user interactionMissing AuthorizationVendor advisory ref	—	2026-04-17
36	CVE-2026-4817	6.5 v3.1	MEDIUM	—	—	NetworkNo user interactionSQL Injection	—	2026-04-17
37	CVE-2026-6068	6.5 v3.1	MEDIUM	0.0004	—	NetworkNo privilegesNo user interactionUse After Free	nasm	2026-04-10
38	CVE-2026-6080	6.5 v3.1	MEDIUM	—	—	NetworkNo user interactionSQL InjectionVendor advisory ref	—	2026-04-17
39	CVE-2026-6364	6.5 v3.1	MEDIUM	0.0003	—	NetworkNo privilegesOut-of-bounds ReadVendor advisory ref	—	2026-04-15
40	CVE-2025-13364	6.4 v3.1	MEDIUM	0.0001	—	NetworkNo user interactionXSSVendor advisory ref	—	2026-04-16
41	CVE-2026-1572	6.4 v3.1	MEDIUM	0.0002	—	NetworkNo user interactionXSSVendor advisory ref	—	2026-04-16
42	CVE-2026-2840	6.4 v3.1	MEDIUM	—	—	NetworkNo user interactionXSSVendor advisory ref	—	2026-04-16
43	CVE-2026-32282	6.4 v3.1	MEDIUM	0.0001	—	No user interactionVendor advisory ref	golang	2026-04-08
44	CVE-2026-3875	6.4 v3.1	MEDIUM	0.0001	—	NetworkNo user interactionXSSVendor advisory ref	—	2026-04-16
45	CVE-2026-5162	6.4 v3.1	MEDIUM	—	—	NetworkNo user interactionXSSVendor advisory ref	—	2026-04-17
46	CVE-2026-34626	6.3 v3.1	MEDIUM	0.0003	—	No privilegesVendor advisory ref	adobe	2026-04-14
47	CVE-2026-39977	6.3 v3.1	MEDIUM	0.0006	—	No privilegesPath TraversalVendor advisory ref	flatpak	2026-04-09
48	CVE-2026-40118	6.3 v3.1	MEDIUM	0.0003	—	NetworkNo privileges	—	2026-04-16
49	CVE-2026-6362	6.3 v3.1	MEDIUM	0.0003	—	NetworkNo privilegesUse After FreeVendor advisory ref	—	2026-04-15
50	CVE-2018-25238	6.2 v3.1	MEDIUM	0.0002	—	No privilegesNo user interactionImproper Memory AccessVendor advisory ref	—	2026-04-04
51	CVE-2018-25239	6.2 v3.1	MEDIUM	0.0001	—	No privilegesNo user interactionVendor advisory ref	—	2026-04-04
52	CVE-2018-25240	6.2 v3.1	MEDIUM	0.0002	—	No privilegesNo user interactionImproper Memory AccessVendor advisory ref	—	2026-04-04
53	CVE-2018-25242	6.2 v3.1	MEDIUM	0.0001	—	No privilegesNo user interactionVendor advisory ref	—	2026-04-04
54	CVE-2018-25243	6.2 v3.1	MEDIUM	0.0001	—	No privilegesNo user interactionVendor advisory ref	—	2026-04-04
55	CVE-2018-25244	6.2 v3.1	MEDIUM	0.0002	—	No privilegesNo user interactionVendor advisory ref	—	2026-04-04
56	CVE-2019-25544	6.2 v3.1	MEDIUM	0.0002	—	No privilegesNo user interactionVendor advisory ref	pidgin	2026-03-21
57	CVE-2019-25545	6.2 v3.1	MEDIUM	0.0001	—	No privilegesNo user interactionOut-of-bounds WriteVendor advisory ref	lizardsystems	2026-03-21
58	CVE-2019-25548	6.2 v3.1	MEDIUM	0.0001	—	No privilegesNo user interactionVendor advisory ref	bluestacks	2026-03-21
59	CVE-2019-25549	6.2 v3.1	MEDIUM	0.0001	—	No privilegesNo user interactionOut-of-bounds WriteVendor advisory ref	verypdf	2026-03-21
60	CVE-2019-25550	6.2 v3.1	MEDIUM	0.0001	—	No privilegesNo user interactionOut-of-bounds WriteVendor advisory ref	verypdf	2026-03-21
61	CVE-2019-25558	6.2 v3.1	MEDIUM	0.0001	—	No privilegesNo user interactionOut-of-bounds WriteVendor advisory ref	pixarra	2026-03-21
62	CVE-2019-25561	6.2 v3.1	MEDIUM	0.0001	—	No privilegesNo user interactionOut-of-bounds WriteVendor advisory ref	jetaudio	2026-03-21
63	CVE-2019-25565	6.2 v3.1	MEDIUM	0.0001	—	No privilegesNo user interactionOut-of-bounds WriteVendor advisory ref	magiciso	2026-03-21
64	CVE-2019-25566	6.2 v3.1	MEDIUM	0.0001	—	No privilegesNo user interactionOut-of-bounds WriteVendor advisory ref	acutesystems	2026-03-21
65	CVE-2019-25567	6.2 v3.1	MEDIUM	0.0001	—	No privilegesNo user interactionOut-of-bounds WriteVendor advisory ref	valentina-db	2026-03-21
66	CVE-2019-25590	6.2 v3.1	MEDIUM	0.0001	—	No privilegesNo user interactionVendor advisory ref	—	2026-03-22
67	CVE-2019-25591	6.2 v3.1	MEDIUM	0.0001	—	No privilegesNo user interactionOut-of-bounds WriteVendor advisory ref	—	2026-03-22
68	CVE-2019-25592	6.2 v3.1	MEDIUM	0.0002	—	No privilegesNo user interactionImproper Memory AccessVendor advisory ref	—	2026-03-22
69	CVE-2019-25594	6.2 v3.1	MEDIUM	0.0002	—	No privilegesNo user interactionVendor advisory ref	—	2026-03-22
70	CVE-2019-25595	6.2 v3.1	MEDIUM	0.0001	—	No privilegesNo user interactionVendor advisory ref	—	2026-03-22
71	CVE-2019-25598	6.2 v3.1	MEDIUM	0.0001	—	No privilegesNo user interactionOut-of-bounds WriteVendor advisory ref	—	2026-03-22
72	CVE-2019-25599	6.2 v3.1	MEDIUM	0.0001	—	No privilegesNo user interactionVendor advisory ref	—	2026-03-22
73	CVE-2019-25601	6.2 v3.1	MEDIUM	0.0001	—	No privilegesNo user interactionOut-of-bounds WriteVendor advisory ref	—	2026-03-22
74	CVE-2019-25616	6.2 v3.1	MEDIUM	0.0001	—	No privilegesNo user interactionUnrestricted UploadVendor advisory ref	—	2026-03-22
75	CVE-2019-25617	6.2 v3.1	MEDIUM	0.0001	—	No privilegesNo user interactionVendor advisory ref	—	2026-03-22
76	CVE-2019-25618	6.2 v3.1	MEDIUM	0.0001	—	No privilegesNo user interactionVendor advisory ref	—	2026-03-22
77	CVE-2019-25659	6.2 v3.1	MEDIUM	0.0001	—	No privilegesNo user interactionOut-of-bounds WriteVendor advisory ref	—	2026-04-05
78	CVE-2019-25661	6.2 v3.1	MEDIUM	0.0001	—	No privilegesNo user interactionOut-of-bounds WriteVendor advisory ref	—	2026-04-05
79	CVE-2026-41030	6.2 v3.1	MEDIUM	0.0000	—	No privilegesNo user interactionVendor advisory ref	—	2026-04-16
80	CVE-2024-10242	6.1 v3.1	MEDIUM	0.0003	—	NetworkNo privilegesXSSVendor advisory ref	—	2026-04-16
81	CVE-2025-6024	6.1 v3.1	MEDIUM	0.0003	—	NetworkNo privilegesXSSVendor advisory ref	—	2026-04-16
82	CVE-2025-63238	6.1 v3.1	MEDIUM	0.0003	—	NetworkNo privilegesXSSVendor advisory ref	limesurvey	2026-04-09
83	CVE-2025-70797	6.1 v3.1	MEDIUM	0.0006	—	NetworkNo privilegesXSS	limesurvey	2026-04-09
84	CVE-2026-20102	6.1 v3.1	MEDIUM	0.0002	—	NetworkNo privilegesXSSVendor advisory ref	cisco	2026-03-04
85	CVE-2026-29136	6.1 v3.1	MEDIUM	0.0003	—	NetworkNo privilegesXSS	seppmail	2026-04-02
86	CVE-2026-31262	6.1 v3.1	MEDIUM	0.0006	—	NetworkNo privilegesInformation Exposure	altenar	2026-04-10
87	CVE-2026-31382	6.1 v3.1	MEDIUM	0.0001	—	NetworkNo privilegesXSS	gainsight	2026-03-20
88	CVE-2026-32289	6.1 v3.1	MEDIUM	0.0001	—	NetworkNo privilegesXSSVendor advisory ref	golang	2026-04-08
89	CVE-2026-32986	6.1 v3.1	MEDIUM	0.0003	—	NetworkNo privilegesXSS	textpattern	2026-03-20
90	CVE-2026-3355	6.1 v3.1	MEDIUM	0.0002	—	NetworkNo privilegesXSSVendor advisory ref	—	2026-04-16
91	CVE-2026-3635	6.1 v3.1	MEDIUM	0.0001	—	No privilegesNo user interactionVendor advisory ref	fastify	2026-03-23
92	CVE-2026-40255	6.1 v3.1	MEDIUM	—	—	NetworkNo privilegesVendor advisory ref	—	2026-04-16
93	CVE-2026-5754	6.1 v3.1	MEDIUM	0.0003	—	NetworkNo privileges	—	2026-04-14
94	CVE-2025-12624	6.0 v3.1	MEDIUM	0.0003	—	NetworkNo user interactionVendor advisory ref	—	2026-04-16
95	CVE-2026-20008	6.0 v3.1	MEDIUM	0.0003	—	No user interactionOS Command InjectionVendor advisory ref	cisco	2026-03-04
96	CVE-2026-22615	6.0 v3.1	MEDIUM	0.0003	—	NetworkImproper Input Validation	—	2026-04-16
97	CVE-2004-1464	5.9 v3.1	MEDIUM	0.0170	Yes	CISA KEVNetworkNo privilegesNo user interactionResource Exhaustion (DoS)Vendor advisory ref	cisco	2004-12-31
98	CVE-2021-22947	5.9 v3.1	MEDIUM	0.0025	—	NetworkNo privilegesNo user interactionVendor advisory ref	fedoraproject, splunk, oracle, haxx, apple, netapp, siemens, debian	2021-09-29
99	CVE-2025-54510	5.9 v4.0	MEDIUM	—	—	No user interactionVendor advisory ref	—	2026-04-16
100	CVE-2026-22618	5.9 v3.1	MEDIUM	0.0001	—	NetworkNo privileges	—	2026-04-16

← Back to all records · CSV Download