Total CVEs

142,750

Critical Severity

4,026

High Severity

14,425

Last 7 Days

1,355
Quick preset (or use dates below)
Clear Filters
๐Ÿ“… Showing Year: 2026 (January 1 - December 31, 2026) View All Years โ†’
Showing 17,821 - 17,840 of 39,155 CVEs
CVE-2026-41501 CRITICAL - 9.8

electerm is an open-sourced terminal/ssh/sftp/telnet/serialport/RDP/VNC/Spice/ftp client. Prior to version 3.3.8, a command injection vulnerability exists in github.com/elcterm/electerm/npm/install.js:130. The runLinux() function appends attacker-controlled remote version strings directly into an ex...

Vendor: npm
Product: electerm
Published: Apr 24, 2026
Source: GitHub
CVE-2026-41263 MEDIUM - 3.7

Traefik is an HTTP reverse proxy and load balancer. Prior to versions 2.11.43, 3.6.14, and 3.7.0-rc.2, there is a timing side-channel vulnerability in Traefik's BasicAuth middleware that allows an attacker to enumerate valid usernames through response-time differences. The variable intended to ...

Vendor: go
Product: github.com/traefik/traefik/v3
Published: Apr 24, 2026
Source: GitHub
CVE-2026-6968 MEDIUM - 5.9

Incomplete path traversal fixes in awslabs/tough before tough-v0.22.0 allow remote authenticated users with delegated signing authority to write files outside intended output directories via absolute target names in copy_target/link_target, symlinked parent directories in save_target, or symlinked m...

Published: Apr 24, 2026
Source: NVD
CVE-2026-6967 MEDIUM - 5.9

Missing expiration, hash, and length enforcement in delegated metadata validation in awslabs/tough before tough-v0.22.0 allows remote authenticated users with delegated signing authority to bypass TUF specification integrity checks for delegated targets metadata and poison the local metadata cache, ...

Vendor: rust
Product: tough
Published: Apr 24, 2026
Source: NVD
CVE-2026-6966 MEDIUM - 5.3

Improper verification of cryptographic signature uniqueness in delegated role validation in awslabs/tough before tough-v0.22.0 allows remote authenticated users to bypass the TUF signature threshold requirement by duplicating a valid signature, causing the client to accept forged delegated role meta...

Vendor: rust
Product: tough
Published: Apr 24, 2026
Source: NVD
CVE-2026-41503 HIGH - 7.5

BACnet Stack is a BACnet open source protocol stack C library for embedded systems. Prior to 1.4.3, an out-of-bounds read vulnerability in bacnet-stack's ReadPropertyMultiple service property decoder allows unauthenticated remote attackers to read past allocated buffer boundaries by sending an ...

Vendor: bacnet-stack
Product: bacnet-stack
Published: Apr 24, 2026
Source: NVD
CVE-2026-41502 HIGH - 7.5

BACnet Stack is a BACnet open source protocol stack C library for embedded systems. Prior to 1.4.3, an off-by-one out-of-bounds read vulnerability in bacnet-stack's ReadPropertyMultiple service decoder allows unauthenticated remote attackers to read one byte past an allocated buffer boundary by...

Vendor: bacnet-stack
Product: bacnet-stack
Published: Apr 24, 2026
Source: NVD
CVE-2026-41477 HIGH - 7.8

Deskflow is a keyboard and mouse sharing app. In 1.20.0, 1.26.0.134, and earlier, Deskflow daemon runs as SYSTEM and exposes an IPC named pipe with WorldAccessOption enabled. The daemon processes privileged commands without authentication, allowing any local unprivileged user to execute arbitrary c...

Vendor: deskflow
Product: deskflow
Published: Apr 24, 2026
Source: NVD
CVE-2026-41476 HIGH - 8.8

Deskflow is a keyboard and mouse sharing app. Prior to 1.26.0.138, a remote memory-safety vulnerability in Deskflow's clipboard deserialization allows a connected peer to trigger an out-of-bounds read by sending a malformed clipboard update. The issue is in the implementation of src/lib/deskfl...

Vendor: deskflow
Product: deskflow
Published: Apr 24, 2026
Source: NVD
CVE-2026-41475 CRITICAL - 9.1

BACnet Stack is a BACnet open source protocol stack C library for embedded systems. Prior to 1.4.3, an out-of-bounds read vulnerability in bacnet-stack's WritePropertyMultiple service decoder allows unauthenticated remote attackers to read past allocated buffer boundaries by sending a truncated...

Vendor: bacnet-stack
Product: bacnet-stack
Published: Apr 24, 2026
Source: NVD
CVE-2026-41433 HIGH - 8.4

OpenTelemetry eBPF Instrumentation provides eBPF instrumentation based on the OpenTelemetry standard. From 0.4.0 to before 0.8.0, a flaw in the Java agent injection path allows a local attacker controlling a Java workload to overwrite arbitrary host files when Java injection is enabled and OBI is ru...

Vendor: open-telemetry
Product: opentelemetry-ebpf-instrumentation
Published: Apr 24, 2026
Source: NVD
CVE-2026-41429 HIGH - 8.8

arduino-esp32 is an Arduino core for the ESP32, ESP32-S2, ESP32-S3, ESP32-C3, ESP32-C6 and ESP32-H2 microcontrollers. Prior to 3.3.8, there is a remotely reachable memory corruption issue in the NBNS packet handling path. When NetBIOS is enabled by calling NBNS.begin(...), the device listens on UDP ...

Vendor: espressif
Product: arduino-esp32
Published: Apr 24, 2026
Source: NVD
CVE-2026-41428 CRITICAL - 9.1

Budibase is an open-source low-code platform. Prior to 3.35.4, the authenticated middleware uses unanchored regular expressions to match public (no-auth) endpoint patterns against ctx.request.url. Since ctx.request.url in Koa includes the query string, an attacker can access any protected endpoint b...

Vendor: Budibase
Product: budibase
Published: Apr 24, 2026
Source: NVD

Better Auth is an authentication and authorization library for TypeScript. Prior to 1.6.5, the clientPrivileges option documents a create action, but the OAuth client creation endpoints did not invoke the hook before persisting new clients. Deployments that configured clientPrivileges to restrict cl...

Vendor: better-auth
Product: better-auth, oauth-provider
Published: Apr 24, 2026
Source: NVD
CVE-2026-41426 MEDIUM - 6.1

pretalx is a conference planning tool. Prior to 2026.1.0, an unauthenticated attacker can send arbitrary HTML-rendered emails from a pretalx instance's configured sender address by embedding malformed HTML or markdown link syntax in a user-controlled template placeholder such as the account dis...

Vendor: pretalx
Product: pretalx
Published: Apr 24, 2026
Source: NVD
CVE-2026-41425 MEDIUM - 5.4

Authlib is a Python library which builds OAuth and OpenID Connect servers. Prior to 1.6.11, there is no CSRF protection on the cache feature in authlib.integrations.starlette_client.OAuth. This vulnerability is fixed in 1.6.11.

Vendor: authlib
Product: authlib
Published: Apr 24, 2026
Source: NVD
CVE-2026-41244 MEDIUM - 4.7

Mojic is a CLI tool to transform readable C code into an unrecognizable chaotic stream of emojis. Prior to 2.1.4, the CipherEngine uses a standard equality operator (!==) to verify the HMAC-SHA256 integrity seal during the decryption phase. This creates an Observable Timing Discrepancy (CWE-208), al...

Vendor: notamitgamer
Product: mojic
Published: Apr 24, 2026
Source: NVD
CVE-2026-41174 MEDIUM - 6.4

Traefik is an HTTP reverse proxy and load balancer. Prior to versions 2.11.43, 3.6.14, and 3.7.0-rc.2, there is a potential vulnerability in Traefik's Kubernetes CRD provider cross-namespace isolation enforcement. When providers.kubernetesCRD.allowCrossNamespace=false, Traefik correctly rejects...

Vendor: go
Product: github.com/traefik/traefik/v3
Published: Apr 24, 2026
Source: GitHub

uuid is for the creation of RFC9562 (formerly RFC4122) UUIDs. Prior to 14.0.0, v3, v5, and v6 accept external output buffers but do not reject out-of-range writes (small buf or large offset). This allows silent partial writes into caller-provided buffers. This vulnerability is fixed in 14.0.0.

Vendor: uuidjs
Product: uuid
Published: Apr 24, 2026
Source: NVD

SiYuan is an open-source personal knowledge management system. Prior to 3.6.5, the fix for CVE-2026-30869 only added a denylist check (IsSensitivePath) but did not address the root cause โ€” a redundant url.PathUnescape() call in serveExport(). An authenticated attacker can use double URL encoding (%2...

Vendor: siyuan-note
Product: siyuan
Published: Apr 24, 2026
Source: NVD