Busca de CVEs
361.085 resultadosCVE-2026-54917HIGHSeaweedFS: Path traversal in the S3 and Iceberg REST gateways allows cross-bucket accessEPSS 0.3%CVE-2026-4930HIGHDPA Countermeasures weakening on Series 3 devicesEPSS 0.1%CVE-2026-28898MEDIUMswift-nio-http2's HTTP/2-to-HTTP/1.1 codec did not validate pseudo-header values for control characters before placing them into the translaEPSS 0.2%CVE-2026-56790HIGHCANBoat - Off-by-One Global Buffer Overflow in searchForPgn()EPSS 0.2%CVE-2026-56789HIGHRTKLIB 2.4.3 - Heap Buffer Overflow and Stack Read via Oversized RINEX Epoch Satellite CountEPSS 0.2%CVE-2026-56788MEDIUMRTKLIB 2.4.3 - Out-of-bounds Read via Negative Array Index in getcodepriEPSS 0.1%CVE-2026-56787MEDIUMRTKLIB 2.4.3 - Off-by-One Out-of-Bounds Read in decode_ssr3 via RTCM3 SSR MessageEPSS 0.3%CVE-2026-56786CRITICALRTKLIB 2.4.3 - Out-of-bounds Write in decode_type1033 via Crafted RTCM3 MessageEPSS 0.4%CVE-2026-56779MEDIUMMaxKB < 2.10.0 - Server-Side Request Forgery via downloadCallbackUrl and download_url ParametersEPSS 0.2%CVE-2026-56774MEDIUMKanboard - Cross-User Deletion of Persistent Login Sessions via Unvalidated Session IDEPSS 0.3%CVE-2026-56772MEDIUMNewsBlur < 14.5.0 - Insecure Direct Object Reference in Social Interactions EndpointEPSS 0.2%CVE-2026-56771MEDIUMNewsBlur < 14.5.0 - Server-Side Request Forgery via add_url EndpointEPSS 0.2%CVE-2026-56770HIGHlibais 0.15 - Out-of-bounds Vector Access in VdmStream::AddLine via Invalid Sequential Message IDEPSS 0.3%CVE-2026-46608HIGHGlances: XML-RPC Multi-Origin CORS Configuration Silently Falls Back to Wildcard (Incomplete Fix for CVE-2026-33533)EPSS 0.4%CVE-2026-56769MEDIUMHuly Platform - Server-Side Request Forgery via /import EndpointEPSS 0.2%CVE-2026-56768HIGHSeahub < 13.0.23 - Authentication Bypass in ShareLinkZipTaskView GET MethodEPSS 0.4%CVE-2026-46607HIGHGlances: Insecure Pickle Deserialization in Version Cache Leads to Arbitrary Code ExecutionEPSS 0.3%CVE-2026-53925HIGHGlances: Arbitrary file write and command execution via `secure_popen` redirection and chaining operators in AMP command configurationEPSS 0.2%CVE-2026-56767HIGHMaxun < 0.0.42 - Cross-Tenant IDOR in Storage and Webhook API HandlersEPSS 0.3%CVE-2026-46606HIGHGlances: Command Injection via KVM/QEMU VM Domain Names in glances/plugins/vms/engines/virsh.pyEPSS 0.2%