Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2026-5383 | 4.4 (v3.1) | runZero Explorer missing authorization check |
runZero |
Explorer |
2026-04-07T14:12:32.422Z | 2026-04-07T20:00:12.927Z |
| cve-2026-5382 | 3 (v3.1) | runZero Platform MCP endpoint information leak |
runZero |
Platform |
2026-04-07T14:12:23.331Z | 2026-04-07T15:38:38.395Z |
| cve-2026-5381 | 2.2 (v3.1) | runZero Platform task information leak |
runZero |
Platform |
2026-04-07T14:12:15.851Z | 2026-04-07T15:02:37.040Z |
| cve-2026-5380 | 5.3 (v3.1) | runZero Platform cleartext secret exposure |
runZero |
Platform |
2026-04-07T14:12:05.649Z | 2026-04-07T15:03:47.654Z |
| cve-2026-5379 | 3 (v3.1) | runZero Platform MCP certification information leak |
runZero |
Platform |
2026-04-07T14:11:53.619Z | 2026-04-07T15:04:56.157Z |
| cve-2026-5378 | 5.8 (v3.1) | runZero Platform user creation leak |
runZero |
Platform |
2026-04-07T14:11:42.793Z | 2026-04-07T15:07:27.321Z |
| cve-2026-5376 | 5.9 (v3.1) | runZero Platform session timeout failure |
runZero |
Platform |
2026-04-07T14:11:30.204Z | 2026-04-07T20:00:20.760Z |
| cve-2026-5375 | 2.7 (v3.1) | runZero Platform API credential information leak |
runZero |
Platform |
2026-04-07T14:11:14.172Z | 2026-04-07T14:50:26.203Z |
| cve-2026-5374 | 5.8 (v3.1) | runZero Platform MCP information leak |
runZero |
Platform |
2026-04-07T14:10:36.244Z | 2026-04-07T14:50:26.053Z |
| cve-2026-5373 | 8.1 (v3.1) | runZero Platform superuser privilege escalation |
runZero |
Platform |
2026-04-07T14:10:18.634Z | 2026-04-07T14:50:25.911Z |
| cve-2026-5372 | 6.4 (v3.1) | runZero Platform SQL injection in saved queries |
runZero |
Platform |
2026-04-07T14:10:08.773Z | 2026-04-07T14:50:25.766Z |
| cve-2026-20911 | A heap-based buffer overflow vulnerability exists… |
LibRaw |
LibRaw |
2026-04-07T13:49:31.223Z | 2026-04-08T03:55:51.222Z | |
| cve-2026-21413 | A heap-based buffer overflow vulnerability exists… |
LibRaw |
LibRaw |
2026-04-07T13:49:29.784Z | 2026-04-08T03:55:50.134Z | |
| cve-2026-20889 | A heap-based buffer overflow vulnerability exists… |
LibRaw |
LibRaw |
2026-04-07T13:49:27.912Z | 2026-04-08T03:55:49.049Z | |
| cve-2026-24660 | A heap-based buffer overflow vulnerability exists… |
LibRaw |
LibRaw |
2026-04-07T13:49:25.335Z | 2026-04-08T20:58:58.522Z | |
| cve-2026-24450 | An integer overflow vulnerability exists in the u… |
LibRaw |
LibRaw |
2026-04-07T13:49:23.872Z | 2026-04-13T13:04:17.479Z | |
| cve-2026-20884 | An integer overflow vulnerability exists in the d… |
LibRaw |
LibRaw |
2026-04-07T13:49:22.423Z | 2026-04-13T13:04:17.769Z | |
| cve-2026-35554 | Apache Kafka Clients: Kafka Producer Message Corruptio… |
Apache Software Foundation |
Apache Kafka Clients |
2026-04-07T13:07:08.679Z | 2026-04-07T16:23:31.521Z | |
| cve-2026-5627 | Path Traversal in mintplex-labs/anything-llm |
mintplex-labs |
mintplex-labs/anything-llm |
2026-04-07T13:06:38.503Z | 2026-04-07T13:52:59.055Z | |
| cve-2026-33866 | 5.3 (v4.0) | Authorization Bypass in MLflow AJAX Endpoint |
Mlflow |
Mlflow |
2026-04-07T12:57:44.380Z | 2026-04-14T15:12:44.168Z |
| cve-2026-33865 | 5.1 (v4.0) | Stored XSS via unsafe YAML parsing in MLflow |
Mlflow |
Mlflow |
2026-04-07T12:57:38.525Z | 2026-04-14T15:13:57.547Z |
| cve-2026-22679 | 9.3 (v4.0) 9.8 (v3.1) | Weaver E-cology 10.0 Unauthenticated RCE via dubboApi … |
Weaver Network Co., Ltd. |
E-cology |
2026-04-07T12:51:22.789Z | 2026-04-07T13:31:03.676Z |
| cve-2021-4473 | 9.3 (v4.0) 9.8 (v3.1) | Tianxin Internet Behavior Management System Command In… |
Beijing Topsec Network Security Technology Co., Ltd. |
Tianxin Internet Behavior Management System |
2026-04-07T12:50:58.200Z | 2026-04-08T14:45:21.214Z |
| cve-2026-5735 | N/A | Memory safety bugs fixed in Firefox 149.0.2 and Thunde… |
Mozilla |
Firefox |
2026-04-07T12:43:15.857Z | 2026-04-13T13:51:36.700Z |
| cve-2026-5734 | N/A | Memory safety bugs fixed in Firefox ESR 140.9.1, Thund… |
Mozilla |
Firefox |
2026-04-07T12:43:14.833Z | 2026-04-13T13:51:34.677Z |
| cve-2026-5733 | N/A | Incorrect boundary conditions in the Graphics: WebGPU … |
Mozilla |
Firefox |
2026-04-07T12:43:13.804Z | 2026-04-13T13:51:30.439Z |
| cve-2026-5732 | N/A | Incorrect boundary conditions, integer overflow in the… |
Mozilla |
Firefox |
2026-04-07T12:43:12.829Z | 2026-04-13T13:51:28.140Z |
| cve-2026-5731 | N/A | Memory safety bugs fixed in Firefox ESR 115.34.1, Fire… |
Mozilla |
Firefox |
2026-04-07T12:43:11.895Z | 2026-04-13T13:51:32.565Z |
| cve-2026-22666 | 8.6 (v4.0) 7.2 (v3.1) | Dolibarr ERP/CRM < 23.0.2 Authenticated RCE via dol_ev… |
Dolibarr |
Dolibarr ERP/CRM |
2026-04-07T12:41:31.280Z | 2026-04-07T13:43:14.034Z |
| cve-2026-28808 | 8.3 (v4.0) | ScriptAlias CGI targets bypass directory auth in inets… |
Erlang |
OTP |
2026-04-07T12:28:16.056Z | 2026-04-07T14:38:09.190Z |
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2022-avi-009 | Multiples vulnérabilités dans les produits QNAP | 2022-01-07T00:00:00.000000 | 2022-01-07T00:00:00.000000 |
| certfr-2022-avi-008 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2022-01-07T00:00:00.000000 | 2022-01-07T00:00:00.000000 |
| certfr-2022-avi-007 | Multiples vulnérabilités dans les produits Moxa | 2022-01-06T00:00:00.000000 | 2022-01-06T00:00:00.000000 |
| certfr-2022-avi-006 | Multiples vulnérabilités dans les produits Tenable | 2022-01-06T00:00:00.000000 | 2022-01-06T00:00:00.000000 |
| certfr-2022-avi-005 | Multiples vulnérabilités dans Spring Framework | 2022-01-06T00:00:00.000000 | 2022-01-06T00:00:00.000000 |
| certfr-2022-avi-004 | Multiples vulnérabilités dans SonicWall SonicOS | 2022-01-06T00:00:00.000000 | 2022-01-06T00:00:00.000000 |
| certfr-2022-avi-003 | Multiples vulnérabilités dans Google Chrome | 2022-01-05T00:00:00.000000 | 2022-01-05T00:00:00.000000 |
| certfr-2022-avi-002 | Multiples vulnérabilités dans Google Android | 2022-01-05T00:00:00.000000 | 2022-01-05T00:00:00.000000 |
| certfr-2022-avi-001 | Vulnérabilité dans les produits VMware | 2022-01-05T00:00:00.000000 | 2022-01-05T00:00:00.000000 |
| certfr-2021-avi-991 | Vulnérabilité dans le noyau Linux de SUSE | 2021-12-31T00:00:00.000000 | 2021-12-31T00:00:00.000000 |
| certfr-2021-avi-990 | Vulnérabilité dans F5 BIG-IP | 2021-12-30T00:00:00.000000 | 2021-12-30T00:00:00.000000 |
| certfr-2021-avi-989 | Multiples vulnérabilités dans Wireshark | 2021-12-30T00:00:00.000000 | 2021-12-30T00:00:00.000000 |
| certfr-2021-avi-988 | Multiples vulnérabilités dans les produits Moxa | 2021-12-30T00:00:00.000000 | 2021-12-30T00:00:00.000000 |
| certfr-2021-avi-987 | Vulnérabilité dans QNAP QTS | 2021-12-30T00:00:00.000000 | 2021-12-30T00:00:00.000000 |
| certfr-2021-avi-986 | Multiples vulnérabilités dans Trend Micro Apex One et Worry-Free Business Security | 2021-12-30T00:00:00.000000 | 2021-12-30T00:00:00.000000 |
| certfr-2021-avi-985 | Vulnérabilité dans Stormshield Network Security | 2021-12-30T00:00:00.000000 | 2021-12-30T00:00:00.000000 |
| certfr-2021-avi-984 | Vulnérabilité dans Fortinet FortiAuthenticator | 2021-12-30T00:00:00.000000 | 2021-12-30T00:00:00.000000 |
| certfr-2021-avi-983 | Multiples vulnérabilités dans les produits Moxa | 2021-12-28T00:00:00.000000 | 2021-12-30T00:00:00.000000 |
| certfr-2021-avi-982 | Vulnérabilité dans Moxa MGate | 2021-12-27T00:00:00.000000 | 2021-12-27T00:00:00.000000 |
| certfr-2021-avi-981 | Multiples vulnérabilités dans SolarWinds Web Help Desk | 2021-12-27T00:00:00.000000 | 2021-12-27T00:00:00.000000 |
| certfr-2021-avi-980 | Vulnérabilité dans les produits F-Secure | 2021-12-22T00:00:00.000000 | 2021-12-22T00:00:00.000000 |
| certfr-2021-avi-979 | Multiples vulnérabilités dans SonicWall SMA100 | 2021-12-22T00:00:00.000000 | 2021-12-22T00:00:00.000000 |
| certfr-2021-avi-978 | Vulnérabilité dans le noyau Linux de Red Hat | 2021-12-22T00:00:00.000000 | 2021-12-22T00:00:00.000000 |
| certfr-2021-avi-977 | Multiples vulnérabilités dans Stormshield Endpoint Security | 2021-12-22T00:00:00.000000 | 2021-12-22T00:00:00.000000 |
| certfr-2021-avi-976 | Vulnérabilité dans le client ownCloud | 2021-12-22T00:00:00.000000 | 2021-12-22T00:00:00.000000 |
| certfr-2021-avi-975 | Vulnérabilité dans NetApp StorageGRID | 2021-12-22T00:00:00.000000 | 2021-12-22T00:00:00.000000 |
| certfr-2021-avi-974 | Multiples vulnérabilités dans Mozilla Thunderbird | 2021-12-21T00:00:00.000000 | 2021-12-21T00:00:00.000000 |
| certfr-2021-avi-973 | Multiples vulnérabilités dans Xen | 2021-12-21T00:00:00.000000 | 2021-12-21T00:00:00.000000 |
| certfr-2021-avi-972 | Multiples vulnérabilités dans Apache httpd | 2021-12-21T00:00:00.000000 | 2021-12-21T00:00:00.000000 |
| certfr-2021-avi-971 | Multiples vulnérabilités dans SolarWinds Orion | 2021-12-21T00:00:00.000000 | 2021-12-21T00:00:00.000000 |