Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.
Filter and search through 707 vulnerabilities
| CVE ID | Description | CVSS | Priority | Trend | Exploit | Patch |
|---|---|---|---|---|---|---|
| CVE-2026-6973 | An Improper Input Validation in Ivanti EPMM before versions 12.6.1.1, 12.7.0.1, and 12.8.0.1 allows a remotely authenticated user with administrative ... | 7.2 | 696 | Neutral | Yes |
| Yes |
| CVE-2026-45498 | Microsoft Defender Denial of Service Vulnerability | 7.5 | 807 | Neutral | Yes | Yes |
| CVE-2026-42897 | Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft Exchange Server allows an unauthorized attacker to p... | 6.1 | 569 | Neutral | Yes | Yes |
| CVE-2026-41091 | Improper link resolution before file access ('link following') in Microsoft Defender allows an authorized attacker to elevate privileges locally. | 7.8 | 767 | Neutral | Yes | Yes |
| CVE-2026-3502 | TrueConf Client downloads application update code and applies it without performing verification. An attacker who is able to influence the update deli... | 7.8 | 718 | Neutral | Yes | Yes |
| CVE-2026-34926 | A directory traversal vulnerability in the Apex One (on-premise) server could allow a pre-authenticated local attacker to modify a key table on the se... | 6.7 | 653 | Neutral | Yes | Yes |
| CVE-2026-34621 | Acrobat Reader versions 24.001.30356, 26.001.21367 and earlier are affected by an Improperly Controlled Modification of Object Prototype Attributes ('... | 8.6 | 826 | Neutral | Yes | Yes |
| CVE-2026-33825 | Insufficient granularity of access control in Microsoft Defender allows an authorized attacker to elevate privileges locally. | 7.8 | 767 | Low | Yes | Yes |
| CVE-2026-33634 | ## Summary On March 19, 2026, a threat actor used compromised credentials to publish a malicious Trivy v0.69.4 release, force-push 76 of 77 version t... | 8.8 | 841 | Neutral | Yes | Yes |
| CVE-2026-32202 | Protection mechanism failure in Windows Shell allows an unauthorized attacker to perform spoofing over a network. | 4.3 | 396 | Neutral | Yes | Yes |
| CVE-2026-32201 | Improper input validation in Microsoft Office SharePoint allows an unauthorized attacker to perform spoofing over a network. | 6.5 | 598 | Neutral | Yes | Yes |
| CVE-2026-24858 | An Authentication Bypass Using an Alternate Path or Channel vulnerability [CWE-288] vulnerability in Fortinet FortiAnalyzer 7.6.0 through 7.6.5, Forti... | 9.8 | 885 | Neutral | Yes | Yes |
| CVE-2026-21533 | Improper privilege management in Windows Remote Desktop allows an authorized attacker to elevate privileges locally. | 7.8 | 728 | Neutral | Yes | Yes |
| CVE-2026-21525 | Null pointer dereference in Windows Remote Access Connection Manager allows an unauthorized attacker to deny service locally. | 6.2 | 477 | Neutral | Yes | Yes |
| CVE-2026-21519 | Access of resource using incompatible type ('type confusion') in Desktop Window Manager allows an authorized attacker to elevate privileges locally. | 7.8 | 728 | Neutral | Yes | Yes |
| CVE-2026-21514 | Reliance on untrusted inputs in a security decision in Microsoft Office Word allows an unauthorized attacker to bypass a security feature locally. | 7.8 | 767 | Neutral | Yes | Yes |
| CVE-2026-21513 | Protection mechanism failure in MSHTML Framework allows an unauthorized attacker to bypass a security feature over a network. | 8.8 | 880 | Neutral | Yes | Yes |
| CVE-2026-21510 | Protection mechanism failure in Windows Shell allows an unauthorized attacker to bypass a security feature over a network. | 8.8 | 880 | Neutral | Yes | Yes |
| CVE-2026-21509 | Reliance on untrusted inputs in a security decision in Microsoft Office allows an unauthorized attacker to bypass a security feature locally. | 7.8 | 728 | Neutral | Yes | Yes |
| CVE-2026-21385 | Memory corruption while using alignments for memory allocation. | 7.8 | 728 | Neutral | Yes | Yes |