Security
CVE Feed
Latest vulnerabilities from the National Vulnerability Database.
12604
Total
849
Critical
3630
High
3947
Medium
| CVE ID | Severity | Score | Description | Published |
|---|---|---|---|---|
| CVE-2010-20110 | UNKNOWN | — | Rejected reason: This CVE has the been REJECTED and will not be published by the CNA. | Apr 22, 2026 |
| CVE-2009-20012 | UNKNOWN | — | Rejected reason: This CVE has the been REJECTED and will not be published by the CNA. | Apr 22, 2026 |
| CVE-2008-20003 | UNKNOWN | — | Rejected reason: This CVE has the been REJECTED and will not be published by the CNA. | Apr 22, 2026 |
| CVE-2008-20002 | UNKNOWN | — | Rejected reason: This CVE has the been REJECTED and will not be published by the CNA. | Apr 22, 2026 |
| CVE-2005-20001 | UNKNOWN | — | Rejected reason: This CVE has the been REJECTED and will not be published by the CNA. | Apr 22, 2026 |
| CVE-2000-5001 | UNKNOWN | — | Rejected reason: This CVE has the been REJECTED and will not be published by the CNA. | Apr 22, 2026 |
| CVE-2026-6857 | HIGH | 7.5 | A flaw was found in camel-infinispan. This vulnerability involves unsafe deserialization in the ProtoStream remote aggregation repository. A remote attacker with low privileges could exploit … | Apr 22, 2026 |
| CVE-2026-6855 | HIGH | 7.1 | A flaw was found in InstructLab. A local attacker could exploit a path traversal vulnerability in the chat session handler by manipulating the `logs_dir` parameter. … | Apr 22, 2026 |
| CVE-2026-6848 | MEDIUM | 5.4 | A flaw was found in Red Hat Quay. When Red Hat Quay requests password re-verification for sensitive operations, such as token generation or robot account … | Apr 22, 2026 |
| CVE-2026-33601 | MEDIUM | 4.4 | If you use the zoneToCache function with a malicious authoritative server, an attacker can send a zone that result in a null pointer dereference, caused … | Apr 22, 2026 |
| CVE-2026-33600 | MEDIUM | 4.4 | An RPZ sent by a malicious authoritative server can result in a null pointer dereference, caused by a missing consistency check and leading to a … | Apr 22, 2026 |
| CVE-2026-33262 | MEDIUM | 5.9 | An attacker can send replies that result in a null pointer dereference, caused by a missing consistency check and leading to a denial of service. … | Apr 22, 2026 |
| CVE-2026-33261 | MEDIUM | 5.9 | A zone transition from NSEC to NSEC3 might trigger an internal inconsistency and cause a denial of service. | Apr 22, 2026 |
| CVE-2026-33260 | MEDIUM | 5.3 | An attacker can send a web request that causes unlimited memory allocation in the internal web server, leading to a denial of service. The internal … | Apr 22, 2026 |
| CVE-2026-33259 | MEDIUM | 5.0 | Having many concurrent transfers of the same RPZ can lead to inconsistent RPZ data, use after free and/or a crash of the recursor. Normally concurrent … | Apr 22, 2026 |
| CVE-2026-33258 | MEDIUM | 5.3 | By publishing and querying a crafted zone an attacker can cause allocation of large entries in the negative and aggressive NSEC(3) caches. | Apr 22, 2026 |
| CVE-2026-33257 | MEDIUM | 5.3 | An attacker can send a web request that causes unlimited memory allocation in the internal web server, leading to a denial of service. The internal … | Apr 22, 2026 |
| CVE-2026-33256 | MEDIUM | 5.3 | An attacker can send a web request that causes unlimited memory allocation in the internal web server, leading to a denial of service. The internal … | Apr 22, 2026 |
| CVE-2026-1930 | MEDIUM | 4.3 | The Emailchef plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the page_options_ajax_disconnect() function in all versions … | Apr 22, 2026 |
| CVE-2026-1913 | MEDIUM | 6.4 | The Gallagher Website Design plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's login_link shortcode in all versions up to, and including, … | Apr 22, 2026 |
| CVE-2026-1395 | MEDIUM | 6.4 | The Gutentools plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Post Slider block's block_id attribute in all versions up to, and including, … | Apr 22, 2026 |
| CVE-2026-6846 | HIGH | 7.8 | A flaw was found in binutils. A heap-buffer-overflow vulnerability exists when processing a specially crafted XCOFF (Extended Common Object File Format) object file during linking. … | Apr 22, 2026 |
| CVE-2026-6845 | MEDIUM | 5.0 | A flaw was found in binutils, specifically within the `readelf` utility. This vulnerability allows a local attacker to cause a Denial of Service (DoS) by … | Apr 22, 2026 |
| CVE-2026-6844 | MEDIUM | 5.5 | A flaw was found in the `readelf` utility of the binutils package. A local attacker could exploit two Denial of Service (DoS) vulnerabilities by providing … | Apr 22, 2026 |
| CVE-2026-6843 | MEDIUM | 5.5 | A flaw was found in nano. A local user could exploit a format string vulnerability in the `statusline()` function. By creating a directory with a … | Apr 22, 2026 |