Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.
Filter and search through 953 vulnerabilities
| CVE ID | Description | CVSS | Priority | Trend | Exploit | Patch |
|---|---|---|---|---|---|---|
| CVE-2026-6973 | An Improper Input Validation in Ivanti EPMM before versions 12.6.1.1, 12.7.0.1, and 12.8.0.1 allows a remotely authenticated user with administrative ... | 7.2 | 696 | Neutral | Yes |
| Yes |
| CVE-2026-5281 | Use after free in Dawn in Google Chrome prior to 146.0.7680.178 allowed a remote attacker who had compromised the renderer process to execute arbitrar... | 8.8 | 970 | Neutral | Yes | Yes |
| CVE-2026-45498 | Microsoft Defender Denial of Service Vulnerability | 7.5 | 807 | Neutral | Yes | Yes |
| CVE-2026-42897 | Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft Exchange Server allows an unauthorized attacker to p... | 6.1 | 569 | Neutral | Yes | Yes |
| CVE-2026-41940 | cPanel and WHM versions prior to 11.110.0.97, 11.118.0.63, 11.126.0.54, 11.132.0.29, 11.134.0.20, and 11.136.0.5 contain an authentication bypass vuln... | 9.8 | 999 | Viral | Yes | Yes |
| CVE-2026-41091 | Improper link resolution before file access ('link following') in Microsoft Defender allows an authorized attacker to elevate privileges locally. | 7.8 | 767 | Neutral | Yes | Yes |
| CVE-2026-3910 | Inappropriate implementation in V8 in Google Chrome prior to 146.0.7680.75 allowed a remote attacker to execute arbitrary code inside a sandbox via a ... | 8.8 | 999 | Neutral | Yes | Yes |
| CVE-2026-3909 | Out of bounds write in Skia in Google Chrome prior to 146.0.7680.75 allowed a remote attacker to perform out of bounds memory access via a crafted HTM... | 8.8 | 970 | Neutral | Yes | Yes |
| CVE-2026-35616 | A improper access control vulnerability in Fortinet FortiClientEMS 7.4.5 through 7.4.6 may allow an unauthenticated attacker to execute unauthorized c... | 9.8 | 949 | Neutral | Yes | Yes |
| CVE-2026-3502 | TrueConf Client downloads application update code and applies it without performing verification. An attacker who is able to influence the update deli... | 7.8 | 718 | Neutral | Yes | Yes |
| CVE-2026-34926 | A directory traversal vulnerability in the Apex One (on-premise) server could allow a pre-authenticated local attacker to modify a key table on the se... | 6.7 | 653 | Neutral | Yes | Yes |
| CVE-2026-34621 | Acrobat Reader versions 24.001.30356, 26.001.21367 and earlier are affected by an Improperly Controlled Modification of Object Prototype Attributes ('... | 8.6 | 826 | Neutral | Yes | Yes |
| CVE-2026-33825 | Insufficient granularity of access control in Microsoft Defender allows an authorized attacker to elevate privileges locally. | 7.8 | 767 | Low | Yes | Yes |
| CVE-2026-33634 | ## Summary On March 19, 2026, a threat actor used compromised credentials to publish a malicious Trivy v0.69.4 release, force-push 76 of 77 version t... | 8.8 | 841 | Neutral | Yes | Yes |
| CVE-2026-32202 | Protection mechanism failure in Windows Shell allows an unauthorized attacker to perform spoofing over a network. | 4.3 | 396 | Neutral | Yes | Yes |
| CVE-2026-32201 | Improper input validation in Microsoft Office SharePoint allows an unauthorized attacker to perform spoofing over a network. | 6.5 | 598 | Neutral | Yes | Yes |
| CVE-2026-24858 | An Authentication Bypass Using an Alternate Path or Channel vulnerability [CWE-288] vulnerability in Fortinet FortiAnalyzer 7.6.0 through 7.6.5, Forti... | 9.8 | 885 | Neutral | Yes | Yes |
| CVE-2026-2441 | Use after free in CSS in Google Chrome prior to 145.0.7632.75 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML ... | 8.8 | 970 | Neutral | Yes | Yes |
| CVE-2026-22769 | Dell RecoverPoint for Virtual Machines, versions prior to 6.0.3.1 HF1, contain a hardcoded credential vulnerability. This is considered critical as an... | 10.0 | 999 | Neutral | Yes | Yes |
| CVE-2026-21992 | Vulnerability in the Oracle Identity Manager product of Oracle Fusion Middleware (component: REST WebServices) and Oracle Web Services Manager product... | 9.8 | 912 | Neutral | No | Yes |