Total CVEs

142,265

Critical Severity

3,947

High Severity

14,217

Last 7 Days

1,881
Quick preset (or use dates below)
Clear Filters
Showing 12,241 - 12,260 of 14,217 CVEs
CVE-2026-25575 HIGH - 7.5

NavigaTUM is a website and API to search for rooms, buildings and other places. Prior to commit 86f34c7, there is a path traversal vulnerability in the propose_edits endpoint allows unauthenticated users to overwrite files in directories writable by the application user (e.g., /cdn). By supplying un...

Vendor: TUM-Dev
Product: NavigaTUM
Published: Feb 04, 2026
Source: NVD
CVE-2026-25519 HIGH - 8.1

OpenSlides is a free, web based presentation and assembly system for managing and projecting agenda, motions and elections of an assembly. Prior to version 4.2.29, OpenSlides supports local logins with username and password or an optionally configurable single sign on with SAML via an external IDP. ...

Vendor: OpenSlides
Product: OpenSlides
Published: Feb 04, 2026
Source: NVD
CVE-2026-25512 HIGH - 8.8

Group-Office is an enterprise customer relationship management and groupware tool. Prior to versions 6.8.150, 25.0.82, and 26.0.5, there is a remote code execution (RCE) vulnerability in Group-Office. The endpoint email/message/tnefAttachmentFromTempFile directly concatenates the user-controlled par...

Vendor: Intermesh
Product: groupoffice
Published: Feb 04, 2026
Source: NVD
CVE-2025-15555 HIGH - 7.3

A security flaw has been discovered in Open5GS up to 2.7.6. Affected by this vulnerability is the function hss_ogs_diam_cx_mar_cb of the file src/hss/hss-cx-path.c of the component VoLTE Cx-Test. The manipulation of the argument OGS_KEY_LEN results in stack-based buffer overflow. The attack may be l...

Vendor: open5gs
Product: Open5GS
Published: Feb 04, 2026
Source: NVD
CVE-2025-71031 HIGH - 7.5

Water-Melon Melon commit 9df9292 and below is vulnerable to Denial of Service. The HTTP component doesn't have any maximum length. As a result, an excessive request header could cause a denial of service by consuming RAM memory.

Published: Feb 04, 2026
Source: NVD
CVE-2026-25593 HIGH - 8.4

OpenClaw is a personal AI assistant. Prior to 2026.1.20, an unauthenticated local client could use the Gateway WebSocket API to write config via config.apply and set unsafe cliPath values that were later used for command discovery, enabling command injection as the gateway user. This vulnerability i...

Vendor: npm
Product: openclaw
Published: Feb 04, 2026
Source: GitHub
CVE-2026-25536 HIGH - 7.1

MCP TypeScript SDK is the official TypeScript SDK for Model Context Protocol servers and clients. From version 1.10.0 to 1.25.3, cross-client response data leak when a single McpServer/Server and transport instance is reused across multiple client connections, most commonly in stateless StreamableHT...

Vendor: npm
Product: @modelcontextprotocol/sdk
Published: Feb 04, 2026
Source: GitHub
CVE-2026-25546 HIGH - 7.8

Godot MCP is a Model Context Protocol (MCP) server for interacting with the Godot game engine. Prior to version 0.1.1, a command injection vulnerability in godot-mcp allows remote code execution. The executeOperation function passed user-controlled input (e.g., projectPath) directly to exec(), which...

Vendor: npm
Product: @coding-solo/godot-mcp
Published: Feb 04, 2026
Source: GitHub
CVE-2026-0536 HIGH - 7.8

A maliciously crafted GIF file, when parsed through Autodesk 3ds Max, can cause a Stack-Based Buffer Overflow vulnerability. A malicious actor can leverage this vulnerability to execute arbitrary code in the context of the current process.

Vendor: autodesk
Product: 3ds_max
Published: Feb 04, 2026
Source: NVD
CVE-2026-25161 HIGH - 8.8

Alist is a file list program that supports multiple storages, powered by Gin and Solidjs. Prior to version 3.57.0, the application contains path traversal vulnerability in multiple file operation handlers. An authenticated attacker can bypass directory-level authorisation by injecting traversal sequ...

Vendor: go
Product: github.com/alist-org/alist/v3
Published: Feb 04, 2026
Source: GitHub
CVE-2026-23897 HIGH - 7.5

Apollo Server is an open-source, spec-compliant GraphQL server that's compatible with any GraphQL client, including Apollo Client. In versions from 2.0.0 to 3.13.0, 4.2.0 to before 4.13.0, and 5.0.0 to before 5.4.0, the default configuration of startStandaloneServer from @apollo/server/standalo...

Vendor: npm
Product: apollo-server
Published: Feb 04, 2026
Source: GitHub
CVE-2026-25055 HIGH - 8.1

n8n is an open source workflow automation platform. Prior to versions 1.123.12 and 2.4.0, when workflows process uploaded files and transfer them to remote servers via the SSH node without validating their metadata the vulnerability can lead to files being written to unintended locations on those re...

Vendor: n8n-io
Product: n8n
Published: Feb 04, 2026
Source: NVD
CVE-2026-25054 HIGH - 5.4

n8n is an open source workflow automation platform. Prior to versions 1.123.9 and 2.2.1, a Cross-Site Scripting (XSS) vulnerability existed in a markdown rendering component used in n8n's interface, including workflow sticky notes and other areas that support markdown content. An authenticated ...

Vendor: n8n-io
Product: n8n
Published: Feb 04, 2026
Source: NVD
CVE-2026-25051 HIGH - 5.4

n8n is an open source workflow automation platform. Prior to version 1.123.2, a Cross-Site Scripting (XSS) vulnerability has been identified in the handling of webhook responses and related HTTP endpoints. Under certain conditions, the Content Security Policy (CSP) sandbox protection intended to iso...

Vendor: n8n-io
Product: n8n
Published: Feb 04, 2026
Source: NVD
CVE-2026-20119 HIGH - 7.5

A vulnerability in the text rendering subsystem of Cisco TelePresence Collaboration Endpoint (CE) Software and Cisco RoomOS Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to insufficient valida...

Vendor: Cisco
Product: Cisco RoomOS Software, Cisco TelePresence Endpoint Software (TC/CE)
Published: Feb 04, 2026
Source: NVD
CVE-2026-20098 HIGH - 8.8

A vulnerability in the Certificate Management feature of Cisco Meeting Management could allow an authenticated, remote attacker to upload arbitrary files, execute arbitrary commands, and elevate privileges to root on an affected system. This vulnerability is due to improper input validation in ce...

Vendor: Cisco
Product: Cisco Meeting Management
Published: Feb 04, 2026
Source: NVD
CVE-2026-0662 HIGH - 7.8

A maliciously crafted project directory, when opening a max file in Autodesk 3ds Max, could lead to execution of arbitrary code in the context of the current process due to an Untrusted Search Path being utilized.

Vendor: autodesk
Product: 3ds_max
Published: Feb 04, 2026
Source: NVD
CVE-2026-0661 HIGH - 7.8

A maliciously crafted RGB file, when parsed through Autodesk 3ds Max, can force a Memory Corruption vulnerability. A malicious actor can leverage this vulnerability to execute arbitrary code in the context of the current process.

Vendor: autodesk
Product: 3ds_max
Published: Feb 04, 2026
Source: NVD
CVE-2026-0660 HIGH - 7.8

A maliciously crafted GIF file, when parsed through Autodesk 3ds Max, can cause a Stack-Based Buffer Overflow vulnerability. A malicious actor can leverage this vulnerability to execute arbitrary code in the context of the current process.

Vendor: autodesk
Product: 3ds_max
Published: Feb 04, 2026
Source: NVD
CVE-2026-0659 HIGH - 7.8

A maliciously crafted USD file, when loaded or imported into Autodesk Arnold or Autodesk 3ds Max, can force an Out-of-Bounds Write vulnerability. A malicious actor can leverage this vulnerability to execute arbitrary code in the context of the current process.

Published: Feb 04, 2026
Source: NVD