Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2026-30817 | 6.8 (v4.0) | Arbitrary File Reading Vulnerability in dnsmasq Module… |
TP-Link Systems Inc. |
AX53 v1.0 |
2026-04-08T17:53:58.495Z | 2026-04-08T19:21:49.676Z |
| cve-2026-30816 | 6.8 (v4.0) | Arbitrary File Reading Vulnerability in OpenVPN Module… |
TP-Link Systems Inc. |
AX53 v1.0 |
2026-04-08T17:53:20.560Z | 2026-04-08T19:21:56.624Z |
| cve-2026-30815 | 8.5 (v4.0) | OS Command Injection Vulnerability in OpenVPN Module i… |
TP-Link Systems Inc. |
AX53 v1.0 |
2026-04-08T17:52:29.336Z | 2026-04-09T03:56:16.458Z |
| cve-2026-34166 | LiquidJS has a Memory Limit Bypass via Quadratic Ampli… |
harttle |
liquidjs |
2026-04-08T17:52:05.849Z | 2026-04-10T20:37:03.164Z | |
| cve-2026-30814 | 7.3 (v4.0) | Buffer Overflow Vulnerability in TP-Link AX53 |
TP-Link Systems Inc. |
AX53 v1.0 |
2026-04-08T17:52:00.929Z | 2026-04-09T03:56:15.034Z |
| cve-2026-33350 | LORIS has a SQL injection in MRI feedback popup |
aces |
Loris |
2026-04-08T17:47:32.566Z | 2026-04-08T19:24:05.846Z | |
| cve-2026-27806 | Fleet Affected by Local Privilege Escalation via Tcl C… |
fleetdm |
fleet |
2026-04-08T17:40:24.119Z | 2026-04-09T14:24:14.670Z | |
| cve-2026-39851 | Saleor has a user enumeration vulnerability due to dif… |
saleor |
saleor |
2026-04-08T17:33:37.998Z | 2026-04-08T19:22:20.422Z | |
| cve-2025-30650 | 6.7 (v3.1) 8.4 (v4.0) | Junos OS: Privileged local user can gain access to a L… |
Juniper Networks |
Junos OS |
2026-04-08T17:26:35.685Z | 2026-04-13T21:17:19.185Z |
| cve-2026-0811 | Advanced CF7 DB <= 2.0.9 - Cross-Site Request Forgery … |
vsourz1td |
Advanced Contact form 7 DB |
2026-04-08T17:25:52.629Z | 2026-04-08T19:10:25.260Z | |
| cve-2026-0814 | Advanced CF7 DB <= 2.0.9 - Missing Authorization to Au… |
vsourz1td |
Advanced Contact form 7 DB |
2026-04-08T17:25:52.159Z | 2026-04-08T18:36:26.257Z | |
| cve-2026-2942 | ProSolution WP Client <= 1.9.9 - Unauthenticated Arbit… |
prosolution |
ProSolution WP Client |
2026-04-08T17:25:51.614Z | 2026-04-08T19:22:50.228Z | |
| cve-2026-35407 | Saleor has Cross-Account Email Change via Unbound Conf… |
saleor |
saleor |
2026-04-08T17:24:39.716Z | 2026-04-10T20:36:19.733Z | |
| cve-2026-35401 | Saleor has a resource exhaustion vulnerability in Grap… |
saleor |
saleor |
2026-04-08T17:22:10.683Z | 2026-04-08T19:21:37.796Z | |
| cve-2026-33756 | Saleor Affected by Denial of Service via Unbounded Gra… |
saleor |
saleor |
2026-04-08T17:07:57.920Z | 2026-04-08T18:42:28.521Z | |
| cve-2026-32591 | 5.2 (v3.1) | Mirror-registry: quay: server-side request forgery in … |
Red Hat |
mirror registry for Red Hat OpenShift |
2026-04-08T17:06:58.222Z | 2026-04-21T23:33:34.913Z |
| cve-2026-32590 | 7.1 (v3.1) | Mirror-registry: remote code execution using pickle de… |
Red Hat |
mirror registry for Red Hat OpenShift |
2026-04-08T17:04:22.870Z | 2026-04-21T23:33:34.858Z |
| cve-2026-32589 | 7.4 (v3.1) | Mirror-registry: quay: insecure direct object referenc… |
Red Hat |
mirror registry for Red Hat OpenShift |
2026-04-08T17:04:20.284Z | 2026-04-28T06:09:02.117Z |
| cve-2026-33466 | 8.1 (v3.1) | Improper Limitation of a Pathname to a Restricted Dire… |
Elastic |
Logstash |
2026-04-08T16:50:42.186Z | 2026-04-10T03:56:01.015Z |
| cve-2026-33458 | 6.8 (v3.1) | Server-Side Request Forgery (SSRF) in Kibana One Workf… |
Elastic |
Kibana |
2026-04-08T16:47:58.462Z | 2026-04-08T19:22:33.432Z |
| cve-2026-33459 | 6.5 (v3.1) | Uncontrolled Resource Consumption in Kibana Leading to… |
Elastic |
Kibana |
2026-04-08T16:46:02.601Z | 2026-04-09T14:24:44.912Z |
| cve-2026-33460 | 4.3 (v3.1) | Incorrect Authorization in Kibana Fleet Leading to Inf… |
Elastic |
Kibana |
2026-04-08T16:43:30.788Z | 2026-04-09T14:26:20.085Z |
| cve-2025-14243 | 5.3 (v3.1) | Mirror-registry: openshift mirror registry: user enume… |
Red Hat |
mirror registry for Red Hat OpenShift |
2026-04-08T16:41:55.597Z | 2026-04-08T21:46:14.175Z |
| cve-2026-33461 | 7.7 (v3.1) | Incorrect Authorization in Kibana Fleet Leading to Inf… |
Elastic |
Kibana |
2026-04-08T16:41:27.335Z | 2026-04-09T14:27:16.151Z |
| cve-2026-4498 | 7.7 (v3.1) | Execution with Unnecessary Privileges in Kibana Leadin… |
Elastic |
Kibana |
2026-04-08T16:38:59.327Z | 2026-04-09T14:27:38.420Z |
| cve-2026-2377 | 6.5 (v3.1) | Mirror-registry: quay: quay: server-side request forge… |
Red Hat |
mirror registry for Red Hat OpenShift |
2026-04-08T16:26:07.649Z | 2026-04-09T13:49:27.203Z |
| cve-2026-4837 | 6.6 (v3.1) | Eval Injection in Rapid7 Insight Agent |
Rapid7 |
Insight Agent |
2026-04-08T15:59:03.121Z | 2026-04-13T13:04:16.829Z |
| cve-2026-33753 | Improper Certificate Validation in rfc3161-client |
trailofbits |
rfc3161-client |
2026-04-08T14:54:59.704Z | 2026-04-08T16:12:57.796Z | |
| cve-2026-33229 | XWiki Platform affected by remote code execution with … |
xwiki |
xwiki-platform |
2026-04-08T14:53:35.977Z | 2026-04-10T20:33:15.897Z | |
| cve-2026-39410 | Hono has a non-breaking space prefix bypass in cookie … |
honojs |
hono |
2026-04-08T14:44:40.797Z | 2026-04-08T15:17:14.892Z |
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2022-avi-849 | Multiples vulnérabilités dans Thunderbird | 2022-09-22T00:00:00.000000 | 2022-09-22T00:00:00.000000 |
| certfr-2022-avi-848 | Multiples vulnérabilités dans Bind | 2022-09-21T00:00:00.000000 | 2022-09-21T00:00:00.000000 |
| certfr-2022-avi-847 | Multiples vulnérabilités dans Tenable Nessus Network Monitor | 2022-09-21T00:00:00.000000 | 2022-09-21T00:00:00.000000 |
| certfr-2022-avi-846 | Vulnérabilité dans Microsoft Endpoint Configuration Manager | 2022-09-21T00:00:00.000000 | 2022-09-21T00:00:00.000000 |
| certfr-2022-avi-845 | Multiples vulnérabilités dans Grafana | 2022-09-21T00:00:00.000000 | 2022-09-21T00:00:00.000000 |
| certfr-2022-avi-844 | Multiples vulnérabilités dans Mozilla Firefox et Firefox ESR | 2022-09-21T00:00:00.000000 | 2022-09-21T00:00:00.000000 |
| certfr-2022-avi-843 | Multiples vulnérabilités dans le noyau Linux de Red Hat | 2022-09-21T00:00:00.000000 | 2022-09-21T00:00:00.000000 |
| certfr-2022-avi-842 | Multiples vulnérabilités dans les produits Microsoft | 2022-09-20T00:00:00.000000 | 2022-09-20T00:00:00.000000 |
| certfr-2022-avi-841 | Vulnérabilité dans Microsoft Azure | 2022-09-20T00:00:00.000000 | 2022-09-20T00:00:00.000000 |
| certfr-2022-avi-840 | Multiples vulnérabilités dans Microsoft .Net | 2022-09-20T00:00:00.000000 | 2022-09-20T00:00:00.000000 |
| certfr-2022-avi-839 | Multiples vulnérabilités dans Microsoft Windows | 2022-09-20T00:00:00.000000 | 2022-09-20T00:00:00.000000 |
| certfr-2022-avi-838 | Multiples vulnérabilités dans Microsoft Office | 2022-09-20T00:00:00.000000 | 2022-09-20T00:00:00.000000 |
| certfr-2022-avi-837 | Multiples vulnérabilités dans Moodle | 2022-09-20T00:00:00.000000 | 2022-09-20T00:00:00.000000 |
| certfr-2022-avi-836 | Multiples vulnérabilités dans les produits IBM | 2022-09-20T00:00:00.000000 | 2022-09-20T00:00:00.000000 |
| certfr-2022-avi-835 | Multiples vulnérabilités dans Mozilla Thunderbird | 2022-09-20T00:00:00.000000 | 2022-09-20T00:00:00.000000 |
| certfr-2022-avi-834 | Vulnérabilité dans VMware Spring | 2022-09-20T00:00:00.000000 | 2022-09-20T00:00:00.000000 |
| certfr-2022-avi-833 | Vulnérabilité dans les produits F-Secure | 2022-09-20T00:00:00.000000 | 2022-09-20T00:00:00.000000 |
| certfr-2022-avi-832 | Multiples vulnérabilités dans Synology GLPI | 2022-09-19T00:00:00.000000 | 2022-09-19T00:00:00.000000 |
| certfr-2022-avi-831 | Multiples vulnérabilités dans les produits IBM | 2022-09-19T00:00:00.000000 | 2022-09-19T00:00:00.000000 |
| certfr-2022-avi-830 | Multiples vulnérabilités dans Microsoft Edge | 2022-09-19T00:00:00.000000 | 2022-09-19T00:00:00.000000 |
| certfr-2022-avi-829 | Multiples vulnérabilités dans les produits Nextcloud | 2022-09-19T00:00:00.000000 | 2022-09-19T00:00:00.000000 |
| certfr-2022-avi-828 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2022-09-19T00:00:00.000000 | 2022-09-19T00:00:00.000000 |
| certfr-2022-avi-827 | Multiples vulnérabilités dans le noyau Linux de Red Hat | 2022-09-19T00:00:00.000000 | 2022-09-19T00:00:00.000000 |
| certfr-2022-avi-826 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2022-09-19T00:00:00.000000 | 2022-09-19T00:00:00.000000 |
| certfr-2022-avi-825 | Multiples vulnérabilités dans Google Chrome | 2022-09-15T00:00:00.000000 | 2022-09-15T00:00:00.000000 |
| certfr-2022-avi-824 | Vulnérabilité dans PaloAlto Cortex XDR Agent | 2022-09-15T00:00:00.000000 | 2022-09-15T00:00:00.000000 |
| certfr-2022-avi-823 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2022-09-14T00:00:00.000000 | 2022-09-14T00:00:00.000000 |
| certfr-2022-avi-822 | Multiples vulnérabilités dans les produits Microsoft | 2022-09-14T00:00:00.000000 | 2022-09-20T00:00:00.000000 |
| certfr-2022-avi-821 | Multiples vulnérabilités dans Microsoft Windows | 2022-09-14T00:00:00.000000 | 2022-09-20T00:00:00.000000 |
| certfr-2022-avi-820 | Multiples vulnérabilités dans le noyau Linux de Red Hat | 2022-09-14T00:00:00.000000 | 2022-09-14T00:00:00.000000 |