Total CVEs

143,749

Critical Severity

4,091

High Severity

14,758

Last 7 Days

1,535
Quick preset (or use dates below)
Clear Filters
📅 Showing Year: 2026 (January 1 - December 31, 2026) View All Years →
Showing 20,401 - 20,420 of 40,154 CVEs
CVE-2026-40602 MEDIUM - 5.6

The Home Assistant Command-line interface (hass-cli) is a command-line tool for Home Assistant. Up to 1.0.0 of home-assitant-cli an unrestricted environment was used to handle Jninja2 templates instead of a sandboxed one. The user-supplied input within Jinja2 templates was rendered locally with no r...

Vendor: pip
Product: homeassistant-cli
Published: Apr 16, 2026
Source: GitHub
CVE-2026-40933 CRITICAL - 10.0

Flowise is a drag & drop user interface to build a customized large language model flow. Prior to 3.1.0, due to unsafe serialization of stdio commands in the MCP adapter, an authenticated attacker can add an MCP stdio server with an arbitrary command, achieving command execution. The vulnerabili...

Vendor: npm
Product: flowise
Published: Apr 16, 2026
Source: GitHub
CVE-2026-40901 HIGH - 8.8

DataEase is an open-source data visualization and analytics platform. Versions 2.10.20 and below ship the legacy velocity-1.7.jar, which pulls in commons-collections-3.2.1.jar containing the InvokerTransformer deserialization gadget chain. Quartz 2.3.2, also bundled in the application, deserializes ...

Vendor: dataease
Product: dataease
Published: Apr 16, 2026
Source: NVD
CVE-2026-40900 HIGH - 8.8

DataEase is an open-source data visualization and analytics platform. Versions 2.10.20 and below contain a SQL injection vulnerability in the /de2api/datasetData/previewSql endpoint. The user-supplied SQL is wrapped in a subquery without validation that the input is a single SELECT statement. Combin...

Vendor: dataease
Product: dataease
Published: Apr 16, 2026
Source: NVD
CVE-2026-40324 CRITICAL - 9.1

Hot Chocolate is an open-source GraphQL server. Prior to versions 12.22.7, 13.9.16, 14.3.1, and 15.1.14, Hot Chocolate's recursive descent parser `Utf8GraphQLParser` has no recursion depth limit. A crafted GraphQL document with deeply nested selection sets, object values, list values, or list t...

Vendor: nuget
Product: HotChocolate.Language
Published: Apr 16, 2026
Source: GitHub
CVE-2026-40304 MEDIUM - 5.3

zrok is software for sharing web services, files, and network resources. Prior to version 2.0.1, the unaccess handler (controller/unaccess.go) contains a logical error in its ownership guard: when a frontend record has environment_id = NULL (the marker for admin-created global frontends), the condit...

Vendor: go
Product: github.com/openziti/zrok
Published: Apr 16, 2026
Source: GitHub
CVE-2026-40303 HIGH - 7.5

zrok is software for sharing web services, files, and network resources. Prior to version 2.0.1, endpoints.GetSessionCookie parses an attacker-supplied cookie chunk count and calls make([]string, count) with no upper bound before any token validation occurs. The function is reached on every request ...

Vendor: go
Product: github.com/openziti/zrok
Published: Apr 16, 2026
Source: GitHub
CVE-2026-40302 MEDIUM - 6.1

zrok is software for sharing web services, files, and network resources. Prior to version 2.0.1, the proxyUi template engine uses Go's text/template (which performs no HTML escaping) instead of html/template. The GitHub OAuth callback handlers in both publicProxy and dynamicProxy embed the atta...

Vendor: go
Product: github.com/openziti/zrok
Published: Apr 16, 2026
Source: GitHub
CVE-2026-40899 MEDIUM - 6.5

DataEase is an open-source data visualization and analytics platform. Versions 2.10.20 and below contain a JDBC parameter blocklist bypass vulnerability in the MySQL datasource configuration. The Mysql class uses Lombok's @Data annotation, which auto-generates a public setter for the illegalPar...

Vendor: dataease
Product: dataease
Published: Apr 16, 2026
Source: NVD
CVE-2026-33207 HIGH - 8.8

DataEase is an open-source data visualization and analytics platform. Versions 2.10.20 and below contain a SQL injection vulnerability in the /datasource/getTableField endpoint. The getTableFiledSql method in CalciteProvider.java incorporates the tableName parameter directly into SQL query strings u...

Vendor: dataease
Product: dataease
Published: Apr 16, 2026
Source: NVD
CVE-2026-33122 CRITICAL - 9.8

DataEase is an open-source data visualization and analytics platform. Versions 2.10.20 and below contain a SQL injection vulnerability in the API datasource update process. When a new table definition is added during a datasource update via /de2api/datasource/update, the deTableName field from the u...

Vendor: dataease
Product: dataease
Published: Apr 16, 2026
Source: NVD

Incorrect use of boot service in the AMD Platform Configuration Blob (APCB) SMM driver could allow a privileged attacker with local access (Ring 0) to achieve privilege escalation potentially resulting in arbitrary code execution.

Published: Apr 16, 2026
Source: NVD
CVE-2026-6442 HIGH - 8.3

Improper validation of bash commands in Snowflake Cortex Code CLI versions prior to 1.0.25 allowed subsequent commands to execute outside the sandbox. An attacker could exploit this by embedding specially crafted commands in untrusted content, such as a malicious repository, causing the CLI agent to...

Published: Apr 16, 2026
Source: NVD
CVE-2026-33121 HIGH - 8.8

DataEase is an open-source data visualization and analytics platform. Versions 2.10.20 and below contain a SQL injection vulnerability in the API datasource saving process. The deTableName field from the Base64-encoded datasource configuration is used to construct a DDL statement via simple string r...

Vendor: dataease
Product: dataease
Published: Apr 16, 2026
Source: NVD
CVE-2026-33084 HIGH - 8.8

DataEase is an open-source data visualization and analytics platform. Versions 2.10.20 and below contain a SQL injection vulnerability in the sort parameter of the /de2api/datasetData/enumValueObj endpoint. The DatasetDataManage service layer directly transfers the user-supplied sort value to the so...

Vendor: dataease
Product: dataease
Published: Apr 16, 2026
Source: NVD

A missing lock verification in AMD Secure Processor (ASP) firmware may permit a locally authenticated attacker with administrative privileges to alter MMIO routing on some Zen 5-based products, potentially compromising guest system integrity.

Published: Apr 16, 2026
Source: NVD
CVE-2025-43937 MEDIUM - 6.6

Dell PowerScale OneFS, versions prior to 9.12.0.0, contains an insertion of sensitive information into log file vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to the disclosure of certain user credentials. The attacker may be able to ...

Vendor: Dell
Product: PowerScale OneFS
Published: Apr 16, 2026
Source: NVD
CVE-2025-43935 MEDIUM - 4.4

Dell PowerScale OneFS, versions prior to 9.12.0.0, contains an improper resource shutdown or release vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to denial of service.

Vendor: Dell
Product: PowerScale OneFS
Published: Apr 16, 2026
Source: NVD

Insufficient checks of the RMP on host buffer access in IOMMU may allow an attacker with privileges and a compromised hypervisor to trigger an out of bounds condition without RMP checks, resulting in a potential loss of confidential guest integrity.

Vendor: AMD
Product: AMD EPYC™ 7003 Series Processors, AMD EPYC™ 9004 Series Processors, AMD EPYC™ Embedded 7003 Series Processors, AMD EPYC™ Embedded 9004 Series Processors
Published: Apr 16, 2026
Source: NVD
CVE-2026-41082 HIGH - 7.3

In OCaml opam before 2.5.1, a .install field containing a destination filepath can use ../ to reach a parent directory.

Vendor: OCaml
Product: opam
Published: Apr 16, 2026
Source: NVD