Total CVEs

143,522

Critical Severity

4,074

High Severity

14,702

Last 7 Days

1,481
Quick preset (or use dates below)
Clear Filters
📅 Showing Year: 2026 (January 1 - December 31, 2026) View All Years →
Showing 19,861 - 19,880 of 39,927 CVEs
CVE-2026-23774 HIGH - 7.2

Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release versions 7.7.1.0 through 8.5, LTS2025 release version 8.3.1.0 through 8.3.1.10, LTS2024 release versions 7.13.1.0 through 7.13.1.40, contain an OS command injection vulnerability. A high privileged attacker wi...

Vendor: Dell
Product: PowerProtect Data Domain
Published: Apr 20, 2026
Source: NVD
CVE-2026-6649 MEDIUM - 6.3

A vulnerability was determined in Qibo CMS 1.0. Affected by this issue is some unknown functionality of the file /index/image/headers. Executing a manipulation of the argument starts can lead to server-side request forgery. The attack can be launched remotely. The exploit has been publicly disclosed...

Published: Apr 20, 2026
Source: NVD

An improper access control vulnerability in the canonical-livepatch snap client prior to version 10.15.0 allows a local unprivileged user to obtain a sensitive, root-level authentication token by sending an unauthenticated request to the livepatchd.sock Unix domain socket. This vulnerability is expl...

Published: Apr 20, 2026
Source: NVD
CVE-2026-5760 CRITICAL - 9.8

SGLang's reranking endpoint (/v1/rerank) achieves Remote Code Execution (RCE) when a model file containing a malcious tokenizer.chat_template is loaded, as the Jinja2 chat templates are rendered using an unsandboxed jinja2.Environment().

Published: Apr 20, 2026
Source: NVD
CVE-2026-4048 HIGH - 8.4

OS Command Injection Remote Code Execution Vulnerability in UI in Progress ADC Products allows an authenticated attacker with “All” permissions to execute arbitrary commands on the LoadMaster appliance by exploiting unsanitized input in a custom WAF rule file during the file upload process.

Published: Apr 20, 2026
Source: NVD
CVE-2026-3519 HIGH - 8.4

OS Command Injection Remote Code Execution Vulnerability in API in Progress ADC Products allows an authenticated attacker with “VS Administration” permissions to execute arbitrary commands on the LoadMaster appliance by exploiting unsanitized input in the 'aclcontrol' command

Published: Apr 20, 2026
Source: NVD
CVE-2026-3518 HIGH - 8.4

OS Command Injection Remote Code Execution Vulnerability in API in Progress ADC Products allows an authenticated attacker with “All” permissions to execute arbitrary commands on the LoadMaster appliance by exploiting unsanitized input in the 'killsession' command

Published: Apr 20, 2026
Source: NVD
CVE-2026-3517 HIGH - 8.4

OS Command Injection Remote Code Execution Vulnerability in API in Progress ADC Products allows an authenticated attacker with “Geo Administration” permissions to execute arbitrary commands on the LoadMaster appliance by exploiting unsanitized input in the 'addcountry' command

Published: Apr 20, 2026
Source: NVD
CVE-2026-33558 MEDIUM - 5.3

Information exposure vulnerability has been identified in Apache Kafka. The NetworkClient component will output entire requests and responses information in the DEBUG log level in the logs. By default, the log level is set to INFO level. If the DEBUG level is enabled, the sensitive information will...

Vendor: Apache Software Foundation
Product: Apache Kafka, Apache Kafka Clients
Published: Apr 20, 2026
Source: NVD
CVE-2026-33557 CRITICAL - 9.1

A possible security vulnerability has been identified in Apache Kafka. By default, the broker property `sasl.oauthbearer.jwt.validator.class` is set to `org.apache.kafka.common.security.oauthbearer.DefaultJwtValidator`. It accepts any JWT token without validating its signature, issuer, or audience....

Vendor: Apache Software Foundation
Product: Apache Kafka
Published: Apr 20, 2026
Source: NVD
CVE-2025-66335 MEDIUM - 5.3

Apache Doris MCP Server versions earlier than 0.6.1 are affected by an improper neutralization flaw in query context handling that may allow execution of unintended SQL statements and bypass of intended query validation and access restrictions through the MCP query execution interface. Version 0.6.1...

Vendor: Apache Software Foundation
Product: Apache Doris MCP Server
Published: Apr 20, 2026
Source: NVD
CVE-2026-6648 LOW - 3.5

A vulnerability was found in Qibo CMS 1.0. Affected by this vulnerability is an unknown functionality of the component Internal Message Module. Performing a manipulation results in cross site scripting. The attack can be initiated remotely. The exploit has been made public and could be used. The ven...

Published: Apr 20, 2026
Source: NVD
CVE-2026-6636 MEDIUM - 4.3

A vulnerability was detected in p2r3 convert up to 6998584ace3e11db66dff0b423612a5cf91de75b. Affected is the function Bun.serve of the file buildCache.js of the component API. Performing a manipulation of the argument pathname results in path traversal. It is possible to initiate the attack remotely...

Published: Apr 20, 2026
Source: NVD
CVE-2026-6635 HIGH - 7.3

A security vulnerability has been detected in rowboatlabs rowboat up to 0.1.67. This impacts the function tool_call of the file apps/experimental/tools_webhook/app.py of the component tools_webhook. Such manipulation of the argument X-Tools-JWE leads to improper authentication. The attack may be per...

Published: Apr 20, 2026
Source: NVD
CVE-2026-6634 MEDIUM - 6.3

A weakness has been identified in usememos memos up to 0.22.1. This affects the function memos_access_token of the file src/App.tsx of the component UpdateInstanceSetting. This manipulation of the argument additionalStyle/additionalScript causes improper authorization. The attack is possible to be c...

Published: Apr 20, 2026
Source: NVD
CVE-2026-6633 LOW - 3.5

A security flaw has been discovered in Yifang CMS up to 2.0.5. The impacted element is the function store of the file plugins/yifang_backend_account/logic/admin/L_rbac_admin.php of the component Extended Management Module. The manipulation of the argument Account results in cross site scripting. The...

Published: Apr 20, 2026
Source: NVD

When sed is invoked with both -i (in-place edit) and --follow-symlinks, the function open_next_file() performs two separate, non-atomic filesystem operations on the same path: 1. resolves symlink to its target and stores the resolved path for determining when output is written, 2. opens the origina...

Published: Apr 20, 2026
Source: NVD
CVE-2026-6654 MEDIUM - 5.1

Double-Free / Use-After-Free (UAF) in the `IntoIter::drop` and `ThinVec::clear` functions in the thin_vec crate. A panic in `ptr::drop_in_place` skips setting the length to zero.

Published: Apr 20, 2026
Source: NVD
CVE-2026-6632 HIGH - 8.8

A vulnerability was identified in Tenda F451 1.0.0.7_cn_svn7958. The affected element is the function fromSafeClientFilter of the file /goform/SafeClientFilter of the component httpd. The manipulation of the argument menufacturer/Go leads to buffer overflow. Remote exploitation of the attack is poss...

Published: Apr 20, 2026
Source: NVD
CVE-2026-6631 HIGH - 8.8

A vulnerability was determined in Tenda F451 1.0.0.7_cn_svn7958. Impacted is the function fromwebExcptypemanFilter of the file /goform/webExcptypemanFilter of the component httpd. Executing a manipulation of the argument page can lead to buffer overflow. The attack may be launched remotely. The expl...

Published: Apr 20, 2026
Source: NVD