Búsqueda de CVEs

364.196 resultados
CVE-2026-57881CRITICALGV-LPC2011/LPC2211 - unauthorized stack-based buffer overflow vulnerability (vlsvr)EPSS 0.4%CVE-2026-57880CRITICALGV-LPC2011/LPC2211 - unauthorized buffer overflow via RTSP Digest username (ssvr)EPSS 0.5%CVE-2026-57879CRITICALGV-LPC2011/LPC2211 - unauthorized buffer overflow via AuthMode/AuthValue path (ssvr)EPSS 0.5%CVE-2026-57878CRITICALGV-LPC2011/LPC2211 - unauthorized buffer overflow vulnerability (thttpd)EPSS 0.5%CVE-2026-57877HIGHGV-LPC2011/LPC2211 - unauthorized format string vulnerability (vlsvr)EPSS 0.2%CVE-2026-57876HIGHGV-LPC2011/LPC2211 - unauthorized out-of-bounds writing vulnerability (onvif.cgi)EPSS 0.3%CVE-2026-57875HIGHGV-LPC2011/LPC2211 - unauthorized null pointer dereference vulnerability in packet parsingEPSS 1.3%CVE-2026-57874HIGHGV-LPC2011/LPC2211 - unauthorized buffer overflow vulnerability (IEEE8021x_upload.cgi)EPSS 0.3%CVE-2026-57873HIGHGV-LPC2011/LPC2211 - unauthorized null pointer dereference vulnerability (IEEE8021x_upload.cgi)EPSS 0.2%CVE-2026-57872HIGHGV-LPC2011/LPC2211 - unauthorized directory traversal vulnerability (get_fcont.cgi)EPSS 1.0%CVE-2026-49486HIGHApache Airflow FTP provider: FTP Provider does not protect FTPS data channel (missing PROT_P)EPSS 0.3%CVE-2026-8380MEDIUMFrontend File Manager Plugin <= 23.6 - Author+ Arbitrary Post DeletionEPSS 0.3%CVE-2026-10835HIGHSALESmanago & Leadoo < 3.11.3 - Subscriber+ SQL InjectionEPSS 0.2%CVE-2026-10823HIGHYMC Smart Filter < 3.11.3 - Unauthenticated Private/Draft Post DisclosureEPSS 0.9%CVE-2025-10268MEDIUMPrintcart Web to Print Product Designer for WooCommerce <= 2.4.8 - Unauthenticated Folder Content Disclosure via Path TraversalEPSS 0.3%CVE-2026-8797HIGHAn access control deficiency vulnerability exists in ExpressUpdate Agent for Windows. If a malicious user gains access to the product, arbitEPSS 0.1%CVE-2026-8661MEDIUMServer-Side Cross-Site Scripting and SSRF in Rapid7 InsightConnect Markdown to PDF PluginEPSS 0.3%CVE-2026-13226MEDIUMGroundhogg <= 4.5.4 - Authenticated (Custom+) SQL Injection via 'after' ParameterEPSS 0.3%CVE-2026-48930MEDIUMA flaw in Node.js TLS hostname handling can cause Embedded-nul hostnames can lead to silent authority rebinding due to c-string truncation iEPSS 0.4%CVE-2026-48928MEDIUMA inconsistency in Node.js hostname matching can cause a trust-policy bypass in multi-context mTLS setups. This vulnerability affects allEPSS 0.3%