Total CVEs

143,835

Critical Severity

4,094

High Severity

14,788

Last 7 Days

1,472
Quick preset (or use dates below)
Clear Filters
๐Ÿ“… Showing Year: 2026 (January 1 - December 31, 2026) View All Years โ†’
Showing 21,341 - 21,360 of 40,240 CVEs
CVE-2026-33858 HIGH - 8.8

Dag Authors, who normally should not be able to execute code in the webserver context could craft XCom payload causing the webserver to execute arbitrary code. Since Dag Authors are already highly trusted, severity of this issue is Low. Users are recommended to upgrade to Apache Airflow 3.2.0, whi...

Vendor: Apache Software Foundation
Product: Apache Airflow
Published: Apr 13, 2026
Source: NVD
CVE-2026-31283 CRITICAL - 9.8

In Totara LMS v19.1.5 and before, the forgot password API does not implement rate limiting for the target email address. which can be used for an Email Bombing attack.

Published: Apr 13, 2026
Source: NVD
CVE-2026-31282 CRITICAL - 9.8

Totara LMS v19.1.5 and before is vulnerable to Incorrect Access Control. The login page code can be manipulated to reveal the login form. An attacker can chain that with missing rate-limit on the login form to launch a brute force attack.

Published: Apr 13, 2026
Source: NVD
CVE-2026-31281 HIGH - 8.0

Totara LMS v19.1.5 and before is vulnerable to HTLM Injection. An attacker can inject malicious HTLM code in a message and send it to all the users in the application, resulting in executing the code and may lead to session hijacking and executing commands on the victim's browser.

Published: Apr 13, 2026
Source: NVD
CVE-2026-30999 HIGH - 7.5

A heap buffer overflow in the av_bprint_finalize() function of FFmpeg v8.0.1 allows attackers to cause a Denial of Service (DoS) via a crafted input.

Published: Apr 13, 2026
Source: NVD
CVE-2026-30998 HIGH - 7.5

An improper resource deallocation and closure vulnerability in the tools/zmqsend.c component of FFmpeg v8.0.1 allows attackers to cause a Denial of Service (DoS) via supplying a crafted input file.

Published: Apr 13, 2026
Source: NVD
CVE-2026-30997 HIGH - 7.5

An out-of-bounds read in the read_global_param() function (libavcodec/av1dec.c) of FFmpeg v8.0.1 allows attackers to cause a Denial of Service (DoS) via a crafted input.

Published: Apr 13, 2026
Source: NVD
CVE-2026-29628 MEDIUM - 6.2

A stack overflow in the experimental/tinyobj_loader_opt.h file of tinyobjloader commit d56555b allows attackers to cause a Denial of Service (DoS) via supplying a crafted .mtl file.

Published: Apr 13, 2026
Source: NVD
CVE-2026-1462 HIGH - 8.8

A vulnerability in the `TFSMLayer` class of the `keras` package, version 3.13.0, allows attacker-controlled TensorFlow SavedModels to be loaded during deserialization of `.keras` models, even when `safe_mode=True`. This bypasses the security guarantees of `safe_mode` and enables arbitrary attacker-c...

Published: Apr 13, 2026
Source: NVD
CVE-2025-66236 HIGH - 7.5

Before Airflow 3.2.0, it was unclear that secure Airflow deployments require the Deployment Manager to take appropriate actions and pay attention to security details and security model of Airflow. Some assumptions the Deployment Manager could make were not clear or explicit enough, even though Airfl...

Vendor: Apache Software Foundation
Product: Apache Airflow
Published: Apr 13, 2026
Source: NVD

Sourcecodester Computer and Mobile Repair Shop Management System v1.0 is vulnerable to SQL Injection in the file /rsms/admin/services/view_service.php.

Vendor: oretnom23
Product: computer_and_mobile_repair_shop_management_system
Published: Apr 13, 2026
Source: NVD

Sourcecodester Computer and Mobile Repair Shop Management System v1.0 is vulnerable to SQL injection in the file /rsms/admin/inquiries/view_details.php.

Vendor: oretnom23
Product: computer_and_mobile_repair_shop_management_system
Published: Apr 13, 2026
Source: NVD

In the Linux kernel, the following vulnerability has been resolved: netfilter: nfnetlink_log: fix uninitialized padding leak in NFULA_PAYLOAD __build_packet_message() manually constructs the NFULA_PAYLOAD netlink attribute using skb_put() and skb_copy_bits(), bypassing the standard nla_reserve()/n...

Vendor: Linux
Product: Linux
Published: Apr 13, 2026
Source: NVD

In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_conntrack_sip: fix use of uninitialized rtp_addr in process_sdp process_sdp() declares union nf_inet_addr rtp_addr on the stack and passes it to the nf_nat_sip sdp_session hook after walking the SDP media description...

Vendor: Linux
Product: Linux
Published: Apr 13, 2026
Source: NVD

In the Linux kernel, the following vulnerability has been resolved: ACPI: EC: clean up handlers on probe failure in acpi_ec_setup() When ec_install_handlers() returns -EPROBE_DEFER on reduced-hardware platforms, it has already started the EC and installed the address space handler with the struct ...

Vendor: Linux
Product: Linux
Published: Apr 13, 2026
Source: NVD

In the Linux kernel, the following vulnerability has been resolved: rds: ib: reject FRMR registration before IB connection is established rds_ib_get_mr() extracts the rds_ib_connection from conn->c_transport_data and passes it to rds_ib_reg_frmr() for FRWR memory registration. On a fresh outgoi...

Vendor: Linux
Product: Linux
Published: Apr 13, 2026
Source: NVD

In the Linux kernel, the following vulnerability has been resolved: netfilter: x_tables: restrict xt_check_match/xt_check_target extensions for NFPROTO_ARP Weiming Shi says: xt_match and xt_target structs registered with NFPROTO_UNSPEC can be loaded by any protocol family through nft_compat. When...

Vendor: Linux
Product: Linux
Published: Apr 13, 2026
Source: NVD

In the Linux kernel, the following vulnerability has been resolved: net/sched: sch_hfsc: fix divide-by-zero in rtsc_min() m2sm() converts a u32 slope to a u64 scaled value. For large inputs (e.g. m1=4000000000), the result can reach 2^32. rtsc_min() stores the difference of two such u64 values i...

Vendor: Linux
Product: Linux
Published: Apr 13, 2026
Source: NVD

In the Linux kernel, the following vulnerability has been resolved: net/sched: cls_flow: fix NULL pointer dereference on shared blocks flow_change() calls tcf_block_q() and dereferences q->handle to derive a default baseclass. Shared blocks leave block->q NULL, causing a NULL deref when a f...

Vendor: Linux
Product: Linux
Published: Apr 13, 2026
Source: NVD

In the Linux kernel, the following vulnerability has been resolved: net/sched: cls_fw: fix NULL pointer dereference on shared blocks The old-method path in fw_classify() calls tcf_block_q() and dereferences q->handle. Shared blocks leave block->q NULL, causing a NULL deref when an empty cls...

Vendor: Linux
Product: Linux
Published: Apr 13, 2026
Source: NVD