Total CVEs

141,272

Critical Severity

3,795

High Severity

13,729

Last 7 Days

1,863
Quick preset (or use dates below)
Clear Filters
šŸ“… Showing Year: 2026 (January 1 - December 31, 2026) View All Years →
Showing 6,001 - 6,020 of 37,677 CVEs
CVE-2026-33828 HIGH - 7.8

Trust boundary violation in Windows Attestation allows an authorized attacker to elevate privileges locally.

Vendor: microsoft
Product: windows_10_1607
Published: Jun 09, 2026
Source: NVD
CVE-2026-33113 MEDIUM - 5.4

Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft Office SharePoint allows an authorized attacker to perform spoofing over a network.

Vendor: microsoft
Product: sharepoint_server
Published: Jun 09, 2026
Source: NVD
CVE-2026-32193 HIGH - 8.8

Improper limitation of a pathname to a restricted directory ('path traversal') in Microsoft Azure Kubernetes Service allows an authorized attacker to execute code locally.

Published: Jun 09, 2026
Source: NVD
CVE-2026-28301 MEDIUM - 4.8

A vulnerability in which an attacker can provide a crafted external URL that may redirect a user to an unintended website.

Vendor: SolarWinds
Product: Observability Self-Hosted
Published: Jun 09, 2026
Source: NVD
CVE-2026-26142 CRITICAL - 9.8

Deserialization of untrusted data in Nuance PowerScribe allows an unauthorized attacker to execute code over a network.

Published: Jun 09, 2026
Source: NVD
CVE-2026-24181 HIGH - 7.3

NVIDIA DALI contains a vulnerability in a component where an attacker could cause an improper index validation. A successful exploit of this vulnerability might lead to code execution, data tampering, denial of service, and information disclosure.

Vendor: NVIDIA
Product: DALI
Published: Jun 09, 2026
Source: NVD
CVE-2026-24180 HIGH - 7.3

NVIDIA DALI contains a vulnerability in a component where an attacker could cause a heap-based buffer overflow. A successful exploit of this vulnerability might lead to code execution, data tampering, denial of service, and information disclosure.

Vendor: NVIDIA
Product: DALI
Published: Jun 09, 2026
Source: NVD
CVE-2026-22926 HIGH - 7.8

Omnissa Workspace ONEĀ® Assist for macOS contains a Local Privilege Escalation Vulnerability.

Vendor: Omnissa
Product: Omnissa Workspace ONEĀ® Assist for macOS
Published: Jun 09, 2026
Source: NVD

An improper implementation of TLS certificate validation vulnerability found in NETGEAR's ReadyCloud client app which could allow an attacker to performĀ attacker-in-the-middle (MiTM) style attacks impacting the product's confidentiality. This vulnerability affects the listed NETGEAR models...

Published: Jun 09, 2026
Source: NVD

Insufficient input validation in NETGEAR JR6150 (AC750 WiFi Router 802.11ac Dual Band Gigabit released in 2014) allows users connected to the local WiFi Networks to execute operating system commands.Ā NETGEAR JR6150 has reached End-of-Support phase as of 2018 , and no further security updates are pl...

Published: Jun 09, 2026
Source: NVD

Insufficient configuration management in the listed devicesĀ allows authenticated administrators connected to the local network to tamper with the system.

Published: Jun 09, 2026
Source: NVD

Insufficient input validation vulnerability in the listed NETGEARĀ devicesĀ allows authenticated administrators connected to the local network toĀ tamper with the router's integrity.

Published: Jun 09, 2026
Source: NVD

An insufficient input validation vulnerability in certain NETGEAR router models as listed allows an authenticated administrator with local network access to submit crafted input that bypasses intended management interface restrictions, resulting in unauthorized modification of protected router softw...

Published: Jun 09, 2026
Source: NVD

Insufficient input validation vulnerability in theĀ listed NETGEAR models allowsĀ authenticated administrators connected to the local network to make unauthorized modification of router software and functionality.

Published: Jun 09, 2026
Source: NVD

Insufficient input validation vulnerability in theĀ listed NETGEAR models allowsĀ authenticated administrators connected to the local network to make unauthorized modification of router software and functionality.

Published: Jun 09, 2026
Source: NVD

A buffer overflow vulnerability due to insufficient input validationĀ in theĀ listed NETGEAR models allowsĀ authenticated administrators connected to the local network to make unauthorized modification of router software and functionality.

Published: Jun 09, 2026
Source: NVD

Insufficient input validation vulnerability in NETGEAR JR6150 (AC750 WiFi Router 802.11ac Dual Band Gigabit released in 2014) allows administrators connected to the local network to make unauthorized modification of router software and functionality.Ā NETGEARĀ JR6150 reached End-of-Support status in 2...

Published: Jun 09, 2026
Source: NVD

An information disclosure vulnerability in theĀ NETGEARĀ Orbi satellites (RBR/RBE/RBS Series) could allow a user connected to your network to gain administrator access to the Orbi router. The listed NETGEAR models are affected by this vulnerability. Orbi WiFi Systems without satellite devices are no...

Published: Jun 09, 2026
Source: NVD

Authenticated administrators connected to the local network can gain elevated access to the router and make unauthorized changes to router software and functionality.

Published: Jun 09, 2026
Source: NVD

AĀ NETGEARĀ security issue that could allow an attacker with ability to intercept and tamper with traffic between the router and the Internet to run commands on your device when the device administrator performs certain specific management actions.Ā This issue affects NETGEAR Orbi 370 series devices be...

Published: Jun 09, 2026
Source: NVD