Total CVEs

142,027

Critical Severity

3,943

High Severity

14,108

Last 7 Days

1,778
Quick preset (or use dates below)
Clear Filters
๐Ÿ“… Showing Year: 2026 (January 1 - December 31, 2026) View All Years โ†’
Showing 13,701 - 13,720 of 13,803 CVEs
CVE-2025-20779 HIGH - 7.0

In display, there is a possible use after free due to a race condition. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10184084; Issue ID: MSV-4720.

Vendor: google
Product: android
Published: Jan 06, 2026
Source: NVD
CVE-2025-20778 HIGH - 7.8

In display, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10184870; Issue ID: MSV-4729.

Vendor: google
Product: android
Published: Jan 06, 2026
Source: NVD
CVE-2025-20762 HIGH - 7.5

In Modem, there is a possible system crash due to incorrect error handling. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID...

Vendor: mediatek
Product: nr17
Published: Jan 06, 2026
Source: NVD
CVE-2025-20761 HIGH - 7.5

In Modem, there is a possible system crash due to incorrect error handling. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID...

Vendor: mediatek
Product: nr15
Published: Jan 06, 2026
Source: NVD
CVE-2025-20760 HIGH - 7.5

In Modem, there is a possible read of uninitialized heap data due to an uncaught exception. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for exploi...

Vendor: mediatek
Product: nr15
Published: Jan 06, 2026
Source: NVD
CVE-2025-15364 HIGH - 7.3

The Download Manager plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 3.3.40. This is due to the plugin not properly validating a user's identity prior to updating their details like password. This makes it possible for unauth...

Published: Jan 06, 2026
Source: NVD
CVE-2026-21507 HIGH - 7.5

iccDEV provides a set of libraries and tools for working with ICC color management profiles. Versions 2.3.1 and below have an infinite loop in the IccProfile.cpp function, CalcProfileID. This issue is fixed in version 2.3.1.1.

Vendor: color
Product: iccdev
Published: Jan 06, 2026
Source: NVD
CVE-2025-69229 HIGH - 7.5

AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. In versions 3.13.2 and below, handling of chunked messages can result in excessive blocking CPU usage when receiving a large number of chunks. If an application makes use of the request.read() method in an endpoint, it m...

Vendor: aiohttp
Product: aiohttp
Published: Jan 06, 2026
Source: NVD
CVE-2025-69228 HIGH - 7.5

AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Versions 3.13.2 and below allow a request to be crafted in such a way that an AIOHTTP server's memory fills up uncontrollably during processing. If an application includes a handler that uses the Request.post() meth...

Vendor: aiohttp
Product: aiohttp
Published: Jan 06, 2026
Source: NVD
CVE-2025-69227 HIGH - 7.5

AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Versions 3.13.2 and below allow for an infinite loop to occur when assert statements are bypassed, resulting in a DoS attack when processing a POST body. If optimizations are enabled (-O or PYTHONOPTIMIZE=1), and the app...

Vendor: aiohttp
Product: aiohttp
Published: Jan 06, 2026
Source: NVD
CVE-2025-69223 HIGH - 7.5

AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Versions 3.13.2 and below allow a zip bomb to be used to execute a DoS against the AIOHTTP server. An attacker may be able to send a compressed request that when decompressed by AIOHTTP could exhaust the host's memo...

Vendor: aiohttp
Product: aiohttp
Published: Jan 05, 2026
Source: NVD
CVE-2025-68953 HIGH - 7.5

Frappe is a full-stack web application framework. Versions 14.99.5 and below and 15.0.0 through 15.80.1 include requests that are vulnerable to path traversal attacks. Arbitrary files from the server could be retrieved due to a lack of proper sanitization on some requests. This issue is fixed in ver...

Vendor: frappe
Product: frappe
Published: Jan 05, 2026
Source: NVD
CVE-2025-68455 HIGH - 7.2

Craft is a platform for creating digital experiences. Versions 5.0.0-RC1 through 5.8.20 and 4.0.0-RC1 through 4.16.16 are vulnerable to potential authenticated Remote Code Execution via malicious attached Behavior. Note that attackers must have administrator access to the Craft Control Panel for thi...

Vendor: craftcms
Product: craft_cms
Published: Jan 05, 2026
Source: NVD
CVE-2025-68454 HIGH - 8.8

Craft is a platform for creating digital experiences. Versions 5.0.0-RC1 through 5.8.20 and 4.0.0-RC1 through 4.16.16 are vulnerable to potential authenticated Remote Code Execution via Twig SSTI. For this to work, users must have administrator access to the Craft Control Panel, and allowAdminChange...

Vendor: craftcms
Product: craft_cms
Published: Jan 05, 2026
Source: NVD
CVE-2025-68428 HIGH - 7.5

jsPDF is a library to generate PDFs in JavaScript. Prior to version 4.0.0, user control of the first argument of the loadFile method in the node.js build allows local file inclusion/path traversal. If given the possibility to pass unsanitized paths to the loadFile method, a user can retrieve file co...

Vendor: parall
Product: jspdf
Published: Jan 05, 2026
Source: NVD
CVE-2025-66648 HIGH - 7.2

vega-functions provides function implementations for the Vega expression language. Prior to version 6.1.1, for sites that allow users to supply untrusted user input, malicious use of an internal function (not part of the public API) could be used to run unintentional javascript (XSS). This issue is ...

Published: Jan 05, 2026
Source: NVD
CVE-2025-65110 HIGH - 8.1

Vega is a visualization grammar, a declarative format for creating, saving, and sharing interactive visualization designs. Prior to versions 6.1.2 and 5.6.3, applications meeting two conditions are at risk of arbitrary JavaScript code execution, even if "safe mode" expressionInterpreter is...

Published: Jan 05, 2026
Source: NVD
CVE-2025-61916 HIGH - 7.9

Spinnaker is an open source, multi-cloud continuous delivery platform. Versions prior to 2025.1.6, 2025.2.3, and 2025.3.0 are vulnerable to server-side request forgery. The primary impact is allowing users to fetch data from a remote URL. This data can be then injected into spinnaker pipelines via h...

Published: Jan 05, 2026
Source: NVD
CVE-2025-64425 HIGH - 8.1

Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. In Coolify versions up to and including v4.0.0-beta.434, an attacker can initiate a password reset for a victim, and modify the host header of the request to a malicious value. The victim will receive...

Vendor: coollabs
Product: coolify
Published: Jan 05, 2026
Source: NVD
CVE-2025-64424 HIGH - 8.8

Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. In Coolify versions up to and including v4.0.0-beta.434, a command injection vulnerability exists in the git source input fields of a resource, allowing a low privileged user (member) to execute syste...

Vendor: coollabs
Product: coolify
Published: Jan 05, 2026
Source: NVD