Total CVEs

143,835

Critical Severity

4,094

High Severity

14,788

Last 7 Days

1,466
Quick preset (or use dates below)
Clear Filters
๐Ÿ“… Showing Year: 2026 (January 1 - December 31, 2026) View All Years โ†’
Showing 21,421 - 21,440 of 40,240 CVEs
CVE-2026-34857 MEDIUM - 4.7

UAF vulnerability in the communication module. Impact: Successful exploitation of this vulnerability may affect availability.

Vendor: Huawei
Product: HarmonyOS
Published: Apr 13, 2026
Source: NVD
CVE-2026-34855 MEDIUM - 5.7

Out-of-bounds write vulnerability in the kernel module. Impact: Successful exploitation of this vulnerability will affect availability and confidentiality.

Vendor: Huawei
Product: HarmonyOS, EMUI
Published: Apr 13, 2026
Source: NVD
CVE-2026-34854 MEDIUM - 5.7

UAF vulnerability in the kernel module. Impact: Successful exploitation of this vulnerability will affect availability and confidentiality.

Vendor: Huawei
Product: HarmonyOS, EMUI
Published: Apr 13, 2026
Source: NVD

UAF vulnerability in the screen management module. Impact: Successful exploitation of this vulnerability may affect availability.

Vendor: Huawei
Product: HarmonyOS
Published: Apr 13, 2026
Source: NVD
CVE-2026-25209 MEDIUM - 6.5

Out-of-bounds read vulnerability in Samsung Open Source Escargot allows Resource Leak Exposure.This issue affects Escargot: 97e8115ab1110bc502b4b5e4a0c689a71520d335.

Vendor: Samsung Open Source
Product: Escargot
Published: Apr 13, 2026
Source: NVD
CVE-2026-25208 HIGH - 8.1

Integer overflow vulnerability in Samsung Open Source Escargot allows Overflow Buffers.This issue affects Escargot: 97e8115ab1110bc502b4b5e4a0c689a71520d335.

Vendor: Samsung Open Source
Product: Escargot
Published: Apr 13, 2026
Source: NVD
CVE-2026-25207 HIGH - 7.4

Out-of-bounds write vulnerability in Samsung Open Source Escargot allows Overflow Buffers.This issue affects Escargot: 97e8115ab1110bc502b4b5e4a0c689a71520d335.

Vendor: Samsung Open Source
Product: Escargot
Published: Apr 13, 2026
Source: NVD
CVE-2026-25206 MEDIUM - 6.7

Out-of-bounds read vulnerability in Samsung Open Source Escargot allows Resource Leak Exposure.This issue affects Escargot: 97e8115ab1110bc502b4b5e4a0c689a71520d335.

Vendor: Samsung Open Source
Product: Escargot
Published: Apr 13, 2026
Source: NVD
CVE-2026-25205 HIGH - 7.4

Heap-based buffer overflow vulnerability in Samsung Open Source Escargot allows out-of-bounds write.This issue affects Escargot:commit hashย  97e8115ab1110bc502b4b5e4a0c689a71520d335 .

Vendor: Samsung Open Source
Product: Escargot
Published: Apr 13, 2026
Source: NVD
CVE-2026-21003 MEDIUM - 6.8

Improper input validation in data related to network restrictions prior to SMR Apr-2026 Release 1 allows physical attackers to bypass the restrictions.

Vendor: Samsung Mobile
Product: Samsung Mobile Devices
Published: Apr 13, 2026
Source: NVD
CVE-2026-6157 HIGH - 8.8

A vulnerability was detected in Totolink A800R 4.1.2cu.5137_B20200730. This impacts the function setAppEasyWizardConfig in the library /lib/cste_modules/app.so. The manipulation of the argument apcliSsid results in buffer overflow. The attack can be executed remotely. The exploit is now public and m...

Published: Apr 13, 2026
Source: NVD
CVE-2026-6156 CRITICAL - 9.8

A security vulnerability has been detected in Totolink A7100RU 7.4cu.2313_b20191024. This affects the function setIpQosRules of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. The manipulation of the argument Comment leads to os command injection. Remote exploitation of the attack is pos...

Published: Apr 13, 2026
Source: NVD
CVE-2026-6155 CRITICAL - 9.8

A weakness has been identified in Totolink A7100RU 7.4cu.2313. The impacted element is the function setWanCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. Executing a manipulation of the argument pppoeServiceName can lead to os command injection. The attack may be launched remotely...

Published: Apr 13, 2026
Source: NVD
CVE-2026-6154 CRITICAL - 9.8

A security flaw has been discovered in Totolink A7100RU 7.4cu.2313_b20191024. The affected element is the function setWizardCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. Performing a manipulation of the argument wizard results in os command injection. The attack may be initiated...

Published: Apr 13, 2026
Source: NVD
CVE-2026-6153 HIGH - 7.3

A vulnerability was identified in code-projects Vehicle Showroom Management System 1.0. Impacted is an unknown function of the file /util/StaffDetailsFunction.php. Such manipulation of the argument STAFF_ID leads to sql injection. The attack can be launched remotely. The exploit is publicly availabl...

Published: Apr 13, 2026
Source: NVD
CVE-2026-34867 MEDIUM - 5.6

Double free vulnerability in the multi-mode input system. Impact: Successful exploitation of this vulnerability may affect availability.

Vendor: Huawei
Product: HarmonyOS
Published: Apr 13, 2026
Source: NVD
CVE-2026-34860 MEDIUM - 4.1

Access control vulnerability in the memo module. Impact: Successful exploitation of this vulnerability will affect availability and confidentiality.

Vendor: Huawei
Product: HarmonyOS
Published: Apr 13, 2026
Source: NVD
CVE-2026-34856 HIGH - 7.3

UAF vulnerability in the communication module. Impact: Successful exploitation of this vulnerability may affect availability.

Vendor: Huawei
Product: HarmonyOS
Published: Apr 13, 2026
Source: NVD
CVE-2026-34853 HIGH - 7.7

Permission bypass vulnerability in the LBS module. Impact: Successful exploitation of this vulnerability may affect availability.

Vendor: Huawei
Product: HarmonyOS, EMUI
Published: Apr 13, 2026
Source: NVD
CVE-2026-34852 MEDIUM - 6.1

Stack overflow vulnerability in the media platform. Impact: Successful exploitation of this vulnerability may affect availability.

Vendor: Huawei
Product: HarmonyOS
Published: Apr 13, 2026
Source: NVD