Filter and search through 392,598 vulnerabilities
| CVE ID | Description | CVSS | Priority | Trend | Exploit | Patch |
|---|---|---|---|---|---|---|
| CVE-2026-23915 | Rejected reason: Not used | 0.0 | 0 | Neutral | No |
| No |
| CVE-2026-23914 | Rejected reason: Not used | 0.0 | 0 | Neutral | No | No |
| CVE-2026-23913 | Rejected reason: Not used | 0.0 | 0 | Neutral | No | No |
| CVE-2026-23912 | Rejected reason: Not used | 0.0 | 0 | Neutral | No | No |
| CVE-2026-23911 | Rejected reason: Not used | 0.0 | 0 | Neutral | No | No |
| CVE-2026-23910 | Rejected reason: Not used | 0.0 | 0 | Neutral | No | No |
| CVE-2026-23909 | Rejected reason: Not used | 0.0 | 0 | Neutral | No | No |
| CVE-2026-23893 | openCryptoki is a PKCS#11 library and provides tooling for Linux and AIX. Versions 2.3.2 and above are vulnerable to symlink-following when running in... | 6.8 | 247 | Neutral | No | Yes |
| CVE-2026-23892 | ### Impact OctoPrint versions up to and including 1.11.5 are affected by a (theoretical) timing attack vulnerability that allows API key extraction o... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-23890 | ### Summary A path traversal vulnerability in pnpm's bin linking allows malicious npm packages to create executable shims or symlinks outside of `node... | 6.5 | 331 | Neutral | No | Yes |
| CVE-2026-23889 | ### Summary A path traversal vulnerability in pnpm's tarball extraction allows malicious packages to write files outside the package directory on Wind... | 6.5 | 331 | Neutral | No | Yes |
| CVE-2026-23888 | ### Summary A path traversal vulnerability in pnpm's binary fetcher allows malicious packages to write files outside the intended extraction director... | 6.5 | 331 | Neutral | No | Yes |
| CVE-2026-23887 | Group-Office is an enterprise customer relationship management and groupware tool. In versions 6.8.148 and below, and 25.0.1 through 25.0.79, the appl... | 0.0 | 0 | Neutral | No | No |
| CVE-2026-23886 | ### Impact A denial-of-service vulnerability due to improper input validation allows a remote attacker to crash the service via a malformed HTTP head... | 5.3 | 210 | Neutral | No | Yes |
| CVE-2026-23885 | ### Summary A vulnerability was discovered during a manual security audit of the AlchemyCMS source code. The application uses the Ruby `eval()` functi... | 6.4 | 451 | Neutral | Yes | Yes |
| CVE-2026-23884 | FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.21.0, offscreen bitmap deletion leaves `gdi->drawing` pointing to ... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-23883 | FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.21.0, `xf_Pointer_New` frees `cursorPixels` on failure, then `poin... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2026-23881 | ## Summary Unbounded memory consumption in Kyverno's policy engine allows users with policy creation privileges to cause Denial of Serviceby crafting... | 7.7 | 416 | Neutral | No | Yes |
| CVE-2026-23880 | OnboardLite is a comprehensive membership lifecycle platform built for student organizations at the University of Central Florida. Versions of the sof... | 7.3 | 343 | Neutral | No | No |
| CVE-2026-23878 | HotCRP is conference review software. Starting in commit aa20ef288828b04550950cf67c831af8a525f508 and prior to commit ceacd5f1476458792c44c6a993670f02... | 6.5 | 217 | Neutral | No | No |