Cut the noise.
Know which vulnerabilities demand action.

Monitor and prioritize what really matters — the 1% of vulnerabilities that can cause real impact.

Analytics

EPSS Trending (30d)

Threat Indicators

829
CISA KEV
244
Exploits
493
Proof-of-Concept
38.7%
Average EPSS

EPSS Hot Zone

|
Sort by:
KEV Prediction — Top%
EPSS Percentile — Top%

Emerging Vulnerabilities

30 Jun/26
CVE-2026-48282
CRITICAL

This vulnerability is a path traversal flaw caused by insufficient validation of user-supplied file path inputs within Adobe ColdFusion. The affected component improperly restricts pathname access, allowing attackers to traverse directories outside intended boundaries. This weakness occurs in ColdFusion versions 2023 and earlier, impacting the file handling mechanisms responsible for directory access control.

CVSS 10.0
EPSS 28.6%
KEV Pred in 20d
Product Adobe ColdFusion adobe
CVSS v3.1 KEV CWE-22 PoC RANSOMWARE
29 Jun/26
CVE-2026-56290
CRITICAL

This vulnerability is an unauthenticated arbitrary file upload flaw in the JoomlaCK.fr Page Builder CK extension for Joomla. The root cause lies in insufficient validation and filtering of uploaded files within the extension's file upload functionality. The affected component is the file upload handler that processes incoming files without proper authentication or content-type restrictions, enabling malicious payloads to be uploaded.

CVSS 9.8
EPSS 2.9%
KEV Pred in 19d
Product JoomlaCK.fr Page Builder CK extension for Joomla joomlack.fr
CVSS v3.1 CVSS v4.0 KEV CWE-434 PoC
23 Jun/26
CVE-2026-55255
HIGH

The vulnerability is an Insecure Direct Object Reference (IDOR) affecting the /api/v1/responses endpoint of the langflow-ai langflow product. The root cause is insufficient authorization validation allowing authenticated users to specify arbitrary flow IDs belonging to other users. This flaw resides in the API's access control mechanism for flow execution requests prior to version 1.9.1.

CVSS 8.4
EPSS 0.5%
KEV Pred in 13d
Product langflow-ai langflow langflow-ai
CVSS v3.1 KEV CWE-639 PoC
20 Jun/26
CVE-2026-48908
CRITICAL

This vulnerability is an unrestricted file upload flaw in the SP Page Builder extension for Joomla. The root cause is insufficient validation and sanitization of uploaded files, allowing unauthenticated users to upload arbitrary files, including executable PHP scripts. The affected component is the file upload functionality within the SP Page Builder extension.

CVSS 9.8
EPSS 1.6%
KEV Pred in 10d
Product joomshaper.net SP Page Builder extension for Joomla joomshaper.net
CVSS v3.1 CVSS v4.0 KEV CWE-434 PoC
18 Jun/26
CVE-2026-12569
CRITICAL

This vulnerability is a remote code execution flaw resulting from insecure deserialization of untrusted data within PTC Windchill PDMLink and FlexPLM components. Specifically, the deserialization process fails to properly validate or sanitize incoming serialized objects, allowing malicious payloads to be executed during object reconstruction. The affected components include all CPS versions and Windchill/FlexPLM releases prior to 11.0 M030, where the deserialization functionality is exposed to network input.

CVSS 9.3
EPSS 1.2%
KEV Pred in 7d
Product PTC Windchill PDMLink ptc
CVSS v4.0 KEV CWE-20
15 Jun/26
CVE-2026-20262
MEDIUM

This vulnerability is a path traversal flaw (CWE-22) in the file upload functionality of Cisco Catalyst SD-WAN Manager's web UI. The root cause is improper validation of user-supplied input during the file upload process, allowing crafted input to manipulate file paths. The affected component is the API endpoint handling file uploads within the web management interface.

CVSS 6.5
EPSS 7.7%
KEV Pred in 5d
Product Cisco Catalyst SD-WAN Manager cisco
CVSS v3.1 KEV CWE-22 PoC
14 Jun/26
CVE-2026-54420
HIGH

This vulnerability is a symbolic link (symlink) traversal issue in the LiteSpeed cPanel plugin and LiteSpeed WHM plugin components. The root cause lies in improper validation and handling of user-supplied symlink paths within the plugin's file management routines. Specifically, the plugin fails to correctly restrict symlink resolution for users with FTP or web shell access on shared hosting environments using CloudLinux/CageFS, enabling unauthorized access to filesystem locations outside intended boundaries.

CVSS 8.5
EPSS 1.3%
KEV Pred in 4d
Product LiteSpeed Technologies cPanel Plugin litespeed
CVSS v3.1 KEV CWE-61 PoC
12 Jun/26
CVE-2026-48558
CRITICAL

This vulnerability is an authentication bypass caused by improper validation of OIDC identity tokens within SimpleHelp's authentication flow. The flaw arises because the system accepts identity tokens without verifying their cryptographic signatures. The affected component is the OIDC authentication mechanism in SimpleHelp versions 5.5.15 and earlier, as well as 6.0 pre-release versions.

CVSS 10.0
EPSS 1.2%
KEV Pred in 2d
Product SimpleHelp simplehelp
CVSS v3.1 CVSS v4.0 KEV CWE-347 PoC RANSOMWARE
11 Jun/26
CVE-2026-35273
CRITICAL

This vulnerability is an authentication bypass affecting the Updates Environment Management component of Oracle PeopleSoft Enterprise PeopleTools versions 8.61 and 8.62. The root cause lies in improper access control mechanisms that allow unauthenticated network requests over HTTP to interact with privileged environment management functions. This flaw enables attackers to bypass normal authentication checks within the PeopleTools update management interface.

CVSS 9.8
EPSS 92.3%
KEV Pred in 1d
Product Oracle Corporation PeopleSoft Enterprise PeopleTools oracle
CVSS v3.1 KEV CWE-306 PoC RANSOMWARE
10 Jun/26
CVE-2026-20253
CRITICAL

This vulnerability is an authentication bypass affecting the PostgreSQL sidecar service endpoint in Splunk Enterprise. The root cause is the absence of authentication controls on this endpoint, which allows unauthenticated network users to invoke file operations. The affected component is the PostgreSQL sidecar service integrated within Splunk Enterprise versions prior to 10.2.4 and 10.0.7.

CVSS 9.8
EPSS 88.2%
KEV Pred N/A
Product Splunk Enterprise splunk
CVSS v3.1 KEV CWE-306 PoC
09 Jun/26
CVE-2026-10520
CRITICAL

The vulnerability is an OS command injection rooted in improper input validation within Ivanti Sentry's command execution routines. Specifically, the affected component fails to sanitize user-supplied input before passing it to underlying system shell commands. This flaw exists in versions prior to R10.5.2, R10.6.2, and R10.7.1, impacting the command processing mechanism that interfaces with the operating system shell.

CVSS 10.0
EPSS 99.0%
KEV Pred 72%
Product ivanti Sentry ivanti
CVSS v3.1 KEV CWE-78 PoC RANSOMWARE
08 Jun/26
CVE-2026-11645
HIGH

This vulnerability is an out-of-bounds read and write flaw occurring within the V8 JavaScript engine of Google Chrome. The root cause lies in improper bounds checking during memory operations, allowing access beyond allocated buffer limits. The affected component is the V8 engine, which handles JavaScript execution within the browser sandbox environment.

CVSS 8.8
EPSS 1.7%
KEV Pred 58%
Product Google Chrome google
CVSS v3.1 KEV CWE-125 PoC
08 Jun/26
CVE-2026-50751
CRITICAL

This vulnerability is an authentication bypass caused by a logic flaw in the certificate validation process within the deprecated IKEv1 key exchange protocol. The affected component is the Remote Access and Mobile Access feature of the Check Point Quantum Security Gateway. The root cause lies in improper handling of certificate validation logic flow, which allows bypassing normal authentication checks during VPN establishment.

CVSS 9.3
EPSS 70.1%
KEV Pred 68%
Product checkpoint Quantum Security Gateway checkpoint
CVSS v3.1 KEV CWE-287 PoC RANSOMWARE
05 Jun/26
CVE-2026-7473
MEDIUM

This vulnerability is a protocol decapsulation validation flaw affecting Arista Networks EOS tunnel processing components. Specifically, the switch fails to verify the tunnel protocol type when decapsulating packets on VXLAN, decap-groups, or GRE tunnel interfaces. This improper validation causes the device to incorrectly process tunneled packets with a destination IP matching its configured decapsulation IP regardless of the actual tunnel protocol, leading to unintended packet forwarding behavior.

CVSS 5.8
EPSS 0.8%
KEV Pred 64%
Product Arista Networks EOS arista
CVSS v3.1 CVSS v4.0 KEV CWE-1023 PoC
05 Jun/26
CVE-2026-48907
CRITICAL

The vulnerability is an authentication bypass in the Joomla Content Editor (JCE) extension for Joomla, allowing unauthenticated users to create new editor profiles. This flaw arises from improper access control validation in the profile creation component of the JCE editor. The affected feature is the editor profile management functionality within the JCE extension, which fails to restrict profile creation to authorized users only.

CVSS 9.8
EPSS 80.4%
KEV Pred 60%
Product joomlacontenteditor.net Joomla Content Editor (JCE) extension for Joomla joomlacontenteditor.net
CVSS v3.1 CVSS v4.0 KEV CWE-284 PoC
04 Jun/26
CVE-2026-28318
HIGH

This vulnerability is a denial-of-service condition caused by improper handling of HTTP POST requests with Content-Encoding set to deflate. The root cause lies in the Serv-U service's inability to correctly process specially crafted compressed payloads, leading to resource exhaustion or crash. The affected component is the Serv-U FTP server's HTTP request parsing logic, which does not require authentication to be triggered.

CVSS 7.5
EPSS 10.7%
KEV Pred 70%
Product SolarWinds Serv-U solarwinds
CVSS v3.1 KEV CWE-400 PoC
03 Jun/26
CVE-2026-20230
HIGH

This vulnerability is a server-side request forgery (SSRF) arising from improper input validation of specific HTTP requests in Cisco Unified Communications Manager and its Session Management Edition. The flaw exists within the WebDialer service component, which processes HTTP requests without sufficient sanitization, allowing crafted requests to manipulate internal server behavior. The root cause is the lack of validation on input parameters that control file operations on the underlying operating system.

CVSS 8.6
EPSS 41.7%
KEV Pred 76%
Product Cisco Unified Communications Manager cisco
CVSS v3.1 KEV CWE-918 PoC
27 May/26
CVE-2026-48027
CRITICAL

This vulnerability arises from the publication of a maliciously altered version of the Nx Console extension (version 18.95.0) for Visual Studio Code and OpenVSX. The root cause is the distribution of a compromised package through official extension marketplaces, affecting the integrity verification and supply chain of the Nx Console user interface component. The compromised version contains unauthorized code introduced during the build or publishing process, impacting the extension's execution environment within the IDE.

CVSS 9.8
EPSS 1.8%
KEV Pred 66%
Product nrwl nx-console nrwl
CVSS v3.1 CVSS v4.0 KEV CWE-506 RANSOMWARE
26 May/26
CVE-2026-45247
CRITICAL

This vulnerability is a PHP object injection caused by the unsafe use of PHP's native unserialize() function on user-controlled input. Specifically, the CacheWarmer cookie in Mirasvit Full Page Cache Warmer for Magento 2 versions prior to 1.11.12 is processed without validation, allowing deserialization of crafted serialized PHP objects. The flaw resides in the cache warming component responsible for handling cache refresh requests and related cookie data.

CVSS 9.8
EPSS 27.5%
KEV Pred 61%
Product Mirasvit Full Page Cache Warmer for Magento 2 mirasvit
CVSS v3.1 CVSS v4.0 KEV CWE-502 PoC
22 May/26
CVE-2026-45659
HIGH

This vulnerability is a deserialization flaw in Microsoft Office SharePoint Enterprise Server 2016. It arises from improper handling of untrusted serialized data within SharePoint's data processing components, allowing maliciously crafted input to be deserialized. The affected component is the SharePoint server's deserialization mechanism responsible for processing serialized objects received over the network from authorized users.

CVSS 8.8
EPSS 3.2%
KEV Pred 69%
Product Microsoft SharePoint Enterprise Server 2016 microsoft
CVSS v3.1 KEV CWE-502 PoC RANSOMWARE
22 May/26
CVE-2026-34910
CRITICAL

This vulnerability is a command injection flaw resulting from improper input validation in UniFi OS Server and related UniFi firmware components. The root cause lies in the failure to sanitize user-supplied input before passing it to system-level command execution functions. Affected components include UniFi OS Server and multiple UniFi device firmware versions, where network-accessible interfaces process untrusted input without adequate validation.

CVSS 10.0
EPSS 78.6%
KEV Pred 76%
Product Ubiquiti Inc UniFi OS Server ubiquiti
CVSS v3.1 KEV CWE-20
22 May/26
CVE-2026-34908
CRITICAL

This vulnerability is an Improper Access Control flaw affecting Ubiquiti UniFi OS Server and related firmware components. The root cause lies in insufficient enforcement of authorization checks within system management interfaces, allowing unauthorized network actors to interact with privileged functions. The affected components include UniFi OS devices and various UniFi Dream Machine firmware variants, where control mechanisms fail to restrict access to critical configuration endpoints.

CVSS 10.0
EPSS 2.5%
KEV Pred 72%
Product Ubiquiti Inc UniFi OS Server ubiquiti
CVSS v3.1 KEV CWE-284 PoC
22 May/26
CVE-2026-34909
CRITICAL

This vulnerability is a Path Traversal flaw (CWE-22) in Ubiquiti UniFi OS Server and related firmware components. The root cause is insufficient validation of user-supplied file path inputs, allowing traversal sequences to access files outside the intended directory scope. The affected components include UniFi OS Server and various UniFi device firmware versions that handle file requests without proper sanitization.

CVSS 10.0
EPSS 2.3%
KEV Pred 83%
Product Ubiquiti Inc UniFi OS Server ubiquiti
CVSS v3.1 KEV CWE-22
21 May/26
CVE-2026-48172
CRITICAL

This vulnerability is a privilege escalation flaw rooted in improper handling of Redis enable/disable features within the LiteSpeed User-End cPanel Plugin. The affected component mismanages internal API calls related to the "cpanel_jsonapi_func=redisAble" parameter, allowing unauthorized elevation of privileges. The flaw resides in the plugin's logic that controls Redis functionality toggling, leading to escalation beyond intended permission boundaries.

CVSS 9.8
EPSS 18.9%
KEV Pred 67%
Product LiteSpeed Technologies cPanel Plugin litespeed
CVSS v3.1 CVSS v4.0 KEV CWE-266 PoC RANSOMWARE
20 May/26
CVE-2026-9082
CRITICAL

This vulnerability is a SQL Injection flaw resulting from improper neutralization of special elements within SQL commands in Drupal core. The root cause lies in insufficient input sanitization allowing crafted input to alter SQL queries. The affected component is Drupal core versions from 8.9.0 up to but not including specified patched releases across multiple major versions, impacting database query handling mechanisms.

CVSS 9.8
EPSS 84.6%
KEV Pred 74%
Product Drupal core drupal
CVSS v3.1 KEV CWE-89 PoC
15 May/26
CVE-2026-8398
CRITICAL

This vulnerability is a supply chain compromise affecting the build and distribution process of AVB Disc Soft's DAEMON Tools Lite Windows installer packages, specifically versions 12.5.0.2421 through 12.5.0.2434. The root cause is unauthorized access to the vendor's build infrastructure, allowing attackers to inject malicious code into three signed binaries (DTHelper.exe, DiscSoftBusServiceLite.exe, DTShellHlp.exe). The trojanized binaries maintain valid digital signatures, impacting the integrity verification mechanism of the installation process.

CVSS 9.8
EPSS 1.5%
KEV Pred 51%
Product AVB Disc Soft DAEMON Tools Lite avb
CVSS v3.1 CVSS v4.0 KEV CWE-506
14 May/26
CVE-2026-42897
MEDIUM

The vulnerability is a cross-site scripting (XSS) flaw caused by improper neutralization of user-supplied input during web page generation in Microsoft Exchange Server 2016 Cumulative Update 23. This occurs due to insufficient sanitization of input data processed by the web interface, allowing malicious scripts to be injected into dynamically generated pages. The affected component is the web-based management interface of Microsoft Exchange Server 2016 CU23.

CVSS 6.1
EPSS 5.6%
KEV Pred 84%
Product Microsoft Exchange Server 2016 Cumulative Update 23 microsoft
CVSS v3.1 KEV CWE-79 PoC RANSOMWARE
14 May/26
CVE-2026-20182
CRITICAL

This vulnerability is an authentication bypass in the peering authentication mechanism of Cisco Catalyst SD-WAN Controller and Manager. The root cause lies in improper validation during the control connection handshaking process, allowing crafted requests to circumvent authentication checks. The affected component is the peering authentication feature responsible for establishing secure control connections within the SD-WAN fabric.

CVSS 10.0
EPSS 88.5%
KEV Pred 67%
Product Cisco Catalyst SD-WAN Manager cisco
CVSS v3.1 KEV CWE-287 Exploit PoC RANSOMWARE
13 May/26
CVE-2026-0257
CRITICAL

This vulnerability is an authentication bypass affecting the GlobalProtect portal and gateway components within Palo Alto Networks PAN-OS software. The root cause lies in improper validation of authentication mechanisms, allowing unauthorized users to circumvent security controls. The flaw specifically targets the authentication logic in the VPN access control process, enabling bypass without valid credentials.

CVSS 9.1
EPSS 86.7%
KEV Pred 72%
Product Palo Alto Networks Cloud NGFW palo
CVSS v3.1 CVSS v4.0 KEV CWE-565 PoC
12 May/26
CVE-2026-45321
CRITICAL

This vulnerability is a supply chain compromise involving a chained exploitation of misconfigurations and memory extraction vulnerabilities within GitHub Actions workflows. The root cause includes a pull_request_target misconfiguration allowing elevated access, cache poisoning across fork-to-base trust boundaries, and runtime memory extraction of OIDC tokens from the Actions runner process. The affected component is the npm publishing process for @tanstack/* packages, specifically the trusted-publisher binding in GitHub Actions for TanStack/router, which enabled unauthorized publishing of malicious package versions.

CVSS 9.6
EPSS 2.3%
KEV Pred 73%
Product @tanstack arktype-adapter @tanstack
CVSS v3.1 KEV CWE-506 PoC RANSOMWARE
08 May/26
CVE-2026-42208
CRITICAL

This vulnerability is a SQL injection caused by improper handling of user-supplied input in a database query. Specifically, the proxy server component of LiteLLM improperly concatenates the Authorization header value directly into the SQL query string instead of using parameterized queries. The affected feature is the API key verification mechanism within the proxy’s error-handling path that interacts with the backend database.

CVSS 9.8
EPSS 86.6%
KEV Pred 59%
Product BerriAI litellm berriai
CVSS v3.1 CVSS v4.0 KEV CWE-89 Exploit PoC
08 May/26
CVE-2026-42271
HIGH

This vulnerability is a command injection flaw in the LiteLLM proxy server component, specifically affecting the AI Gateway's handling of server configuration inputs. The root cause lies in two POST endpoints (/mcp-rest/test/connection and /mcp-rest/test/tools/list) that accept unvalidated server configuration data, including command, args, and env fields, which are executed via stdio transport as subprocesses with proxy process privileges. The lack of role-based access control combined with acceptance of arbitrary commands enables exploitation.

CVSS 8.8
EPSS 80.2%
KEV Pred 69%
Product BerriAI litellm berriai
CVSS v3.1 CVSS v4.0 KEV CWE-77 PoC
07 May/26
CVE-2026-6973
HIGH

This vulnerability is an improper input validation flaw within Ivanti Endpoint Manager Mobile's administrative interface. The root cause lies in insufficient sanitization of inputs processed by privileged functions, enabling crafted input to bypass validation controls. The affected component is the administrative access functionality in versions prior to 12.6.1.1, 12.7.0.1, and 12.8.0.1.

CVSS 7.2
EPSS 34.5%
KEV Pred 69%
Product Ivanti Endpoint Manager Mobile ivanti
CVSS v3.1 KEV CWE-20
06 May/26
CVE-2026-0300
CRITICAL

This vulnerability is a buffer overflow caused by improper bounds checking in the User-ID™ Authentication Portal (Captive Portal) service of Palo Alto Networks PAN-OS software. The flaw arises when the service processes specially crafted network packets, leading to memory corruption. The affected component is the User-ID™ Authentication Portal running on PA-Series and VM-Series firewalls within PAN-OS versions 10.2.0 through 10.2.4.

CVSS 9.8
EPSS 32.1%
KEV Pred 64%
Product Palo Alto Networks Cloud NGFW palo
CVSS v3.1 CVSS v4.0 KEV CWE-787 PoC
29 Apr/26
CVE-2026-41940
CRITICAL

This vulnerability is an authentication bypass affecting the login flow of cPanel and WHM versions later than 11.40. The root cause lies in improper validation within the authentication mechanism that allows unauthenticated requests to circumvent normal login procedures. The affected component is the control panel's authentication module responsible for user session establishment and access control.

CVSS 9.8
EPSS 98.1%
KEV Pred 67%
Product cPanel cpanel
CVSS v3.1 CVSS v4.0 KEV CWE-306 Exploit PoC RANSOMWARE
14 Apr/26
CVE-2026-32201
MEDIUM

This vulnerability is an improper input validation flaw affecting Microsoft Office SharePoint components within the SharePoint Enterprise Server 2016 environment. The root cause lies in insufficient sanitization of network-originated input data, enabling maliciously crafted requests to bypass validation controls. The affected feature is the SharePoint server's handling of input parameters used in network communication, which fails to enforce strict validation rules, leading to potential spoofing attacks.

CVSS 6.5
EPSS 24.2%
KEV Pred 72%
Product Microsoft SharePoint Enterprise Server 2016 microsoft
CVSS v3.1 KEV CWE-20 PoC RANSOMWARE
14 Apr/26
CVE-2026-32202
MEDIUM

This vulnerability is a protection mechanism failure classified under spoofing attacks. The root cause lies in improper validation within the Windows Shell component that handles network-originated inputs. Specifically, the flaw allows crafted network packets to bypass expected authenticity checks, enabling unauthorized manipulation of shell-related network communication.

CVSS 4.3
EPSS 64.1%
KEV Pred 73%
Product Microsoft Windows 10 Version 1607 microsoft
CVSS v3.1 KEV CWE-693 PoC RANSOMWARE
09 Apr/26
CVE-2026-39987
CRITICAL

This vulnerability is an authentication bypass in the marimo reactive Python notebook's WebSocket terminal interface. The root cause lies in the /terminal/ws endpoint, which omits the required authentication validation by skipping the validate_auth() call. Instead, it only verifies the running mode and platform support before establishing connections, exposing the terminal WebSocket to unauthenticated access.

CVSS 9.8
EPSS 95.6%
KEV Pred 53%
Product marimo-team marimo marimo-team
CVSS v3.1 CVSS v4.0 KEV CWE-306 PoC
07 Apr/26
CVE-2026-34197
HIGH

This vulnerability is a code injection flaw caused by improper input validation and control of code generation within Apache ActiveMQ Broker's Jolokia JMX-HTTP bridge. The affected component is the Jolokia endpoint exposed at /api/jolokia/ on the web console, where the default access policy allows execution of operations on all ActiveMQ MBeans. The root cause lies in the BrokerService's acceptance of crafted discovery URIs that trigger loading of remote Spring XML application contexts before configuration validation, enabling injection of malicious code via bean instantiation.

CVSS 8.8
EPSS 96.7%
KEV Pred 35%
Product Apache Software Foundation Apache ActiveMQ Broker apache
CVSS v3.1 KEV CWE-20 Exploit PoC
04 Apr/26
CVE-2026-35616
CRITICAL

This vulnerability is an improper access control flaw in Fortinet FortiClientEMS versions 7.4.5 and 7.4.6. The root cause lies in the failure to enforce authentication checks on certain API endpoints, allowing unauthenticated requests to invoke privileged functions. The affected component is the FortiClientEMS management server handling incoming API requests.

CVSS 9.1
EPSS 88.5%
KEV Pred 73%
Product Fortinet FortiClientEMS fortinet
CVSS v3.1 KEV CWE-284 PoC RANSOMWARE
01 Apr/26
CVE-2026-5281
HIGH

This vulnerability is a use-after-free condition occurring within the Dawn graphics component of Google Chrome. The flaw arises due to improper management of memory lifecycle for objects in the renderer process, leading to dereferencing of freed memory. The affected component is the Dawn WebGPU implementation used for rendering operations in Chrome versions prior to 146.0.7680.178.

CVSS 8.8
EPSS 5.0%
KEV Pred 70%
Product Google Chrome google
CVSS v3.1 KEV CWE-416 PoC
30 Mar/26
CVE-2026-3502
HIGH

The vulnerability in TrueConf Client is an insecure update mechanism classified under CWE-494 (Download of Code Without Integrity Check). The client downloads and applies update code without verifying its authenticity or integrity, affecting the update delivery component. This lack of verification allows substitution of the update payload during transmission.

CVSS 7.8
EPSS 5.8%
KEV Pred 60%
Product TrueConf Client trueconf
CVSS v3.1 KEV CWE-494 PoC
23 Mar/26
CVE-2026-33634
HIGH

This vulnerability is a supply chain compromise involving credential theft and unauthorized code injection. The root cause is improper credential management and non-atomic credential rotation, which allowed an attacker to use valid tokens to push malicious commits and replace version tags in GitHub repositories. The affected components include the aquasecurity Trivy binary (version 0.69.4), the trivy-action GitHub Action (versions 0.0.1 to 0.34.2), and the setup-trivy GitHub Action (versions 0.2.0 to 0.2.6).

CVSS 8.8
EPSS 60.4%
KEV Pred 72%
Product aquasecurity setup-trivy aquasecurity
CVSS v3.1 CVSS v4.0 KEV CWE-506 PoC
23 Mar/26
CVE-2026-3055
CRITICAL

This vulnerability is a memory overread caused by insufficient input validation within the SAML Identity Provider (IDP) functionality of NetScaler ADC and NetScaler Gateway. Specifically, the flaw arises when processing malformed SAML assertions or requests, leading to out-of-bounds memory access. The affected components are the NetScaler ADC and NetScaler Gateway platforms configured as SAML IDPs, where input handling routines fail to properly verify data boundaries.

CVSS 9.8
EPSS 84.0%
KEV Pred 73%
Product NetScaler ADC netscaler
CVSS v3.1 CVSS v4.0 KEV CWE-125 Exploit PoC
20 Mar/26
CVE-2026-33017
CRITICAL

This vulnerability is an unauthenticated remote code execution caused by improper input validation and insecure code execution. The affected component is the POST /api/v1/build_public_tmp/{flow_id}/flow endpoint in langflow-ai langflow versions prior to 1.9.0. The root cause is that the endpoint accepts attacker-controlled flow data containing arbitrary Python code, which is executed via Python's exec() function without sandboxing or authentication checks.

CVSS 9.8
EPSS 98.2%
KEV Pred 66%
Product langflow-ai langflow langflow-ai
CVSS v3.1 CVSS v4.0 KEV CWE-94 PoC
12 Mar/26
CVE-2026-3910
HIGH

This vulnerability is a code injection flaw rooted in improper handling of script evaluation within the V8 JavaScript engine used by Google Chrome. Specifically, the issue arises from unsafe execution of dynamically generated code inside the sandbox environment, allowing crafted HTML content to trigger arbitrary code execution. The affected component is the V8 engine prior to version 146.0.7680.75, which fails to adequately sanitize or restrict the execution context of injected scripts.

CVSS 8.8
EPSS 2.0%
KEV Pred 68%
Product Google Chrome google
CVSS v3.1 KEV CWE-94 PoC
12 Mar/26
CVE-2026-3909
HIGH

This vulnerability is an out-of-bounds write occurring within the Skia graphics library component of Google Chrome. The root cause is improper bounds checking during memory operations, leading to memory corruption when processing crafted graphical data. The flaw specifically affects versions of Google Chrome prior to 146.0.7680.75, impacting the rendering engine's handling of certain HTML content.

CVSS 8.8
EPSS 1.6%
KEV Pred 71%
Product Google Chrome google
CVSS v3.1 KEV CWE-787 PoC
11 Mar/26
CVE-2025-67038
CRITICAL

This vulnerability is a command injection flaw rooted in improper input sanitization within the HTTP RPC module of Lantronix EDS5000 firmware version 2.1.0.0R3. Specifically, the username parameter used during authentication failure handling is concatenated directly into a shell command without validation or escaping. This unsafe string concatenation occurs in the log-writing function, enabling injection of arbitrary operating system commands executed with root privileges.

CVSS 9.8
EPSS 0.9%
KEV Pred 70%
Product N/A
CVSS v3.1 KEV CWE-94 PoC
04 Mar/26
CVE-2026-20131
CRITICAL

This vulnerability is an insecure deserialization flaw in the web-based management interface of Cisco Secure Firewall Management Center (FMC). It arises from the unsafe processing of user-supplied serialized Java byte streams, allowing manipulation of the deserialization process. The affected component is the Java deserialization mechanism within the FMC's management interface, which improperly validates incoming serialized objects.

CVSS 10.0
EPSS 27.6%
KEV Pred 78%
Product Cisco Secure Firewall Management Center (FMC) cisco
CVSS v3.1 KEV CWE-502 PoC RANSOMWARE
25 Feb/26
CVE-2026-22719
HIGH

This vulnerability is a command injection flaw rooted in improper input validation within VMware Aria Operations. Specifically, the support-assisted product migration component fails to sanitize user-supplied input, allowing execution of arbitrary system commands. The affected feature processes migration-related commands without adequate filtering, enabling injection through crafted inputs during migration operations.

CVSS 8.1
EPSS 17.4%
KEV Pred 61%
Product VMware Aria Operations vmware
CVSS v3.1 KEV CWE-77
Page 1 of 17 (829 total)