Total CVEs

143,701

Critical Severity

4,088

High Severity

14,745

Last 7 Days

1,551
Quick preset (or use dates below)
Clear Filters
πŸ“… Showing Year: 2026 (January 1 - December 31, 2026) View All Years β†’
Showing 1,281 - 1,300 of 40,106 CVEs
CVE-2026-59089 MEDIUM - 5.5

A flaw was found in GIMP. The PlayStation TIM loader, responsible for handling PlayStation image files, incorrectly calculates the size of the Color Look-Up Table (CLUT) due to an integer overflow. This occurs when multiplying num_colors and num_cluts, both 16-bit unsigned short integers, resulting ...

Vendor: Red Hat
Product: Red Hat Enterprise Linux 6, Red Hat Enterprise Linux 7, Red Hat Enterprise Linux 8, Red Hat Enterprise Linux 9
Published: Jul 06, 2026
Source: NVD
CVE-2026-58404 MEDIUM - 6.8

Hugo is a static site generator. From v0.162.0 through v0.163.0, the default security.http.urls policy denies requests to loopback, internal, and cloud-metadata IPv4 literals, but the deny rule only matched dotted-decimal notation, so alternate IPv4 encodings of the same addresses, including integer...

Vendor: gohugoio
Product: hugo
Published: Jul 06, 2026
Source: NVD
CVE-2026-58403 MEDIUM - 6.5

Hugo is a static site generator. From v0.123.0 through v0.163.0, Hugo's virtual filesystem is designed so that files under a mount cannot reach outside the mount tree, but a regression caused RootMappingFs.statRoot to call Stat, which follows symlinks, instead of Lstat, so a direct os.ReadFile ...

Vendor: gohugoio
Product: hugo
Published: Jul 06, 2026
Source: NVD
CVE-2026-58402 MEDIUM - 5.4

Hugo is a static site generator. From 0.60.0 until 0.163.3, Hugo's default code-block renderer wrote the Markdown code-fence language or info-string into the code class="language-…" data-lang="…" wrapper without HTML escaping. A fence info-string containing a quote and a scr...

Vendor: gohugoio
Product: hugo
Published: Jul 06, 2026
Source: NVD
CVE-2026-55646 MEDIUM - 6.5

vLLM is an inference and serving engine for large language models. From 0.22.0 to 0.23.0, the /v1/audio/transcriptions and /v1/audio/translations routes call request.file.read() to fully materialize an uploaded audio file into memory before vLLM checks the documented VLLM_MAX_AUDIO_CLIP_FILESIZE_MB ...

Vendor: vllm-project
Product: vllm
Published: Jul 06, 2026
Source: NVD

OP-TEE is a Trusted Execution Environment (TEE) designed as companion to a non-secure Linux kernel running on Arm; Cortex-A cores using the TrustZone technology. Starting in version 3.0.0 and prior to version 4.11.0, 32-bit integer overflows in OP-TEE core's AES-GCM implementation cause the aut...

Vendor: OP-TEE
Product: optee_os
Published: Jul 06, 2026
Source: NVD
CVE-2026-44362 MEDIUM - 5.5

OP-TEE is a Trusted Execution Environment (TEE) designed as companion to a non-secure Linux kernel running on Arm; Cortex-A cores using the TrustZone technology. Starting in version 3.20.0 and prior to version 4.11.0, a vulnerability in OP-TEE’s subkey rollback protection allows the use of revoked o...

Vendor: OP-TEE
Product: optee_os
Published: Jul 06, 2026
Source: NVD

OP-TEE is a Trusted Execution Environment (TEE) designed as companion to a non-secure Linux kernel running on Arm; Cortex-A cores using the TrustZone technology. Starting in version 3.3.0 and prior to version 4.11.0, a resource leak exists in OP-TEE’s shared memory cleanup logic because the function...

Vendor: OP-TEE
Product: optee_os
Published: Jul 06, 2026
Source: NVD

OP-TEE is a Trusted Execution Environment (TEE) designed as companion to a non-secure Linux kernel running on Arm; Cortex-A cores using the TrustZone technology. Starting in version 4.5.0 and prior to version 4.11.0, the RSA PKCS#1 v1.5 decryption implementation in the Hisilicon HPRE crypto driver u...

Vendor: OP-TEE
Product: optee_os
Published: Jul 06, 2026
Source: NVD

OP-TEE is a Trusted Execution Environment (TEE) designed as companion to a non-secure Linux kernel running on Arm; Cortex-A cores using the TrustZone technology. Starting in version 3.9.0 and prior to version 4.11.0, the RSA-OAEP decryption implementation in the NXP CAAM crypto driver uses non-const...

Vendor: OP-TEE
Product: optee_os
Published: Jul 06, 2026
Source: NVD

OP-TEE is a Trusted Execution Environment (TEE) designed as companion to a non-secure Linux kernel running on Arm; Cortex-A cores using the TrustZone technology. Starting in version 4.5.0 and prior to version 4.11.0, the RSA-OAEP decryption implementation in the Hisilicon HPRE crypto driver uses non...

Vendor: OP-TEE
Product: optee_os
Published: Jul 06, 2026
Source: NVD
CVE-2026-14898 MEDIUM - 6.5

The OpenAI Codex desktop app for macOS rendered remote images from Markdown in model responses. An attacker who could place an indirect prompt injection in content processed by Codex, such as a connected-tool result or another untrusted source, could induce the model to construct a remote image URL ...

Vendor: OpenAI
Product: Codex desktop app for macOS
Published: Jul 06, 2026
Source: NVD
CVE-2026-14536 HIGH - 8.8

Improper enforcement of a mandatory multi-factor authentication policy in Devolutions Server 2026.2.9.0 allows an attacker with valid user credentials to bypass the MFA Required policy and authenticate without completing multi-factor authentication. The problem occurs when DVLS encounters an invalid...

Vendor: Devolutions
Product: Server
Published: Jul 06, 2026
Source: NVD
CVE-2026-11405 CRITICAL - 9.8

The web server binary /bin/httpd contains a hidden backdoor authentication mechanism in the login() function at 004c88b8. - The function contains a normal authentication path using MD5/hash-based password verification (prod_encode64/PasswordToMd5/check_rand_key). - After normal authentication fa...

Vendor: Tenda
Product: firmware
Published: Jul 06, 2026
Source: NVD
CVE-2026-9182 MEDIUM - 5.3

Esri ArcGIS Server contains an unrestricted file upload vulnerability. An unauthenticated attacker could exploit this issue by uploading a crafted file to the affected endpoint. Successful exploitation could allow arbitrary file upload, potentially allowing for other attacks. This issue impacts all ...

Vendor: esri
Product: arcgis_server
Published: Jul 06, 2026
Source: NVD
CVE-2026-9181 CRITICAL - 9.8

Esri ArcGIS Server contains a directory traversal vulnerability. ArcGIS Enterprise on Kubernetes is not impacted. An unauthenticated attacker could exploit this issue by sending crafted path parameters. Successful exploitation could allow overwriting sensitive files on the system. Abuse of this issu...

Vendor: esri
Product: arcgis_server
Published: Jul 06, 2026
Source: NVD
CVE-2026-55798 MEDIUM - 4.5

Pillow is a Python imaging library. Prior to 12.3.0, WindowsViewer.get_command() constructed a cmd.exe shell command by directly embedding a file path into an f-string without escaping and passed the result to subprocess.Popen(..., shell=True), allowing shell metacharacters in the file path to injec...

Vendor: python-pillow
Product: Pillow
Published: Jul 06, 2026
Source: NVD
CVE-2026-55380 HIGH - 7.5

Pillow is a Python imaging library. Prior to 12.3.0, PIL/GdImageFile.py GdImageFile._open() read image dimensions from the GD 2.x header and stored them in self._size without calling Image._decompression_bomb_check(), allowing a crafted .gd file to trigger excessive C-heap allocation when loaded. Th...

Vendor: python-pillow
Product: Pillow
Published: Jul 06, 2026
Source: NVD
CVE-2026-55379 HIGH - 7.5

Pillow is a Python imaging library. Prior to 12.3.0, PIL/BdfFontFile.py bdf_char() read the BBX width and height field from a BDF font file and passed attacker-controlled dimensions to Image.new() without calling Image._decompression_bomb_check(), bypassing Pillow's documented decompression bom...

Vendor: python-pillow
Product: Pillow
Published: Jul 06, 2026
Source: NVD
CVE-2026-54291 MEDIUM - 5.9

pgjdbc is an open source postgresql JDBC Driver. In releases 42.7.4 through 42.7.11, channelBinding=require connections can be silently downgraded from SCRAM-SHA-256-PLUS with channel binding to plain SCRAM-SHA-256 without it, losing the man-in-the-middle protection the setting is meant to guarantee...

Vendor: pgjdbc
Product: pgjdbc
Published: Jul 06, 2026
Source: NVD