Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2026-34980 | OpenPrinting CUPS: Shared PostScript queue lets anonym… |
OpenPrinting |
cups |
2026-04-03T21:18:09.410Z | 2026-04-06T13:12:43.625Z | |
| cve-2026-34979 | OpenPrinting CUPS: Heap overflow in `get_options()` |
OpenPrinting |
cups |
2026-04-03T21:16:38.594Z | 2026-04-07T14:19:07.586Z | |
| cve-2026-34978 | OpenPrinting CUPS: Path traversal in RSS notify-recipi… |
OpenPrinting |
cups |
2026-04-03T21:15:15.921Z | 2026-04-06T15:42:42.322Z | |
| cve-2026-34990 | OpenPrinting CUPS: Local print admin token disclosure … |
OpenPrinting |
cups |
2026-04-03T21:14:09.616Z | 2026-04-06T18:52:04.074Z | |
| cve-2026-27447 | OpenPrinting CUPS: Authorization bypass via case-insen… |
OpenPrinting |
cups |
2026-04-03T21:11:59.734Z | 2026-04-06T18:50:21.909Z | |
| cve-2017-20237 | 9.8 (v3.1) 9.3 (v4.0) | Hirschmann Industrial HiVision Authentication Bypass R… |
Belden |
Hirschmann Industrial HiVision |
2026-04-03T21:05:49.713Z | 2026-04-06T18:02:03.320Z |
| cve-2026-26058 | Zulip: Path Traversal in Import |
zulip |
zulip |
2026-04-03T20:59:08.941Z | 2026-04-06T13:11:57.089Z | |
| cve-2026-34511 | 6 (v4.0) 5.3 (v3.1) | OpenClaw < 2026.4.2 - PKCE Verifier Exposure via OAuth… |
OpenClaw |
OpenClaw |
2026-04-03T20:45:41.499Z | 2026-04-06T16:57:09.160Z |
| cve-2026-22665 | 8.6 (v4.0) 8.1 (v3.1) | prompts.chat Identity Confusion via Case-Sensitive Use… |
f |
prompts.chat |
2026-04-03T20:28:10.061Z | 2026-04-06T18:02:55.883Z |
| cve-2026-22664 | 7.1 (v4.0) 7.7 (v3.1) | prompts.chat SSRF via Fal.ai Media Status Polling |
f |
prompts.chat |
2026-04-03T20:27:48.247Z | 2026-04-07T14:19:51.012Z |
| cve-2026-22663 | 8.7 (v4.0) 7.5 (v3.1) | prompts.chat Authorization Bypass Information Disclosure |
f |
prompts.chat |
2026-04-03T20:27:25.037Z | 2026-04-06T13:10:30.995Z |
| cve-2026-22662 | 5.3 (v4.0) 4.3 (v3.1) | prompts.chat Blind SSRF via media-generate |
f |
prompts.chat |
2026-04-03T20:27:03.156Z | 2026-04-06T15:29:29.152Z |
| cve-2026-22661 | 8.6 (v4.0) 8.1 (v3.1) | prompts.chat Path Traversal via Skill File Handling |
f |
prompts.chat |
2026-04-03T20:26:29.340Z | 2026-04-06T15:55:44.782Z |
| cve-2025-10681 | 8.8 (v4.0) 8.6 (v3.1) | Gardyn Mobile Application and Device Firmware Use Hard… |
Gardyn |
Mobile Application |
2026-04-03T20:26:12.913Z | 2026-04-06T14:39:20.062Z |
| cve-2026-25197 | 9.3 (v4.0) 9.1 (v3.1) | Gardyn Cloud API Authorization Bypass Through User-Con… |
Gardyn |
Cloud API |
2026-04-03T20:23:20.083Z | 2026-04-07T14:20:31.044Z |
| cve-2026-28766 | 9.2 (v4.0) 9.3 (v3.1) | Gardyn Cloud API Missing Authentication for Critical F… |
Gardyn |
Cloud API |
2026-04-03T20:20:57.302Z | 2026-04-07T14:22:53.379Z |
| cve-2020-37216 | 7.5 (v3.1) 8.7 (v4.0) | Hirschmann HiOS EtherNet/IP Stack Denial of Service |
Belden |
Hirschmann HiOS |
2026-04-03T20:19:25.269Z | 2026-04-04T03:23:19.214Z |
| cve-2026-28767 | 6.9 (v4.0) 5.3 (v3.1) | Gardyn Cloud API Missing Authentication for Critical F… |
Gardyn |
Cloud API |
2026-04-03T20:18:05.470Z | 2026-04-07T14:23:23.456Z |
| cve-2026-32646 | 8.7 (v4.0) 7.5 (v3.1) | Gardyn Cloud API Missing Authentication for Critical F… |
Gardyn |
Cloud API |
2026-04-03T20:15:45.736Z | 2026-04-07T14:24:15.629Z |
| cve-2022-4987 | 7.3 (v3.1) 8.4 (v4.0) | Hirschmann Industrial HiVision External Application Pa… |
Belden |
Hirschmann Industrial HiVision |
2026-04-03T20:15:24.713Z | 2026-04-06T16:51:22.758Z |
| cve-2026-35558 | 7.8 (v3.1) 7.3 (v4.0) | Improper neutralization of special elements in authent… |
Amazon |
Amazon Athena ODBC driver |
2026-04-03T20:15:09.386Z | 2026-04-07T13:07:22.816Z |
| cve-2026-35559 | 6.5 (v3.1) 7.1 (v4.0) | Out-of-bounds write in query processing components in … |
Amazon |
Amazon Athena ODBC driver |
2026-04-03T20:13:29.590Z | 2026-04-07T14:25:39.392Z |
| cve-2026-5485 | 7.8 (v3.1) 7.3 (v4.0) | OS command injection in Amazon Athena ODBC driver on Linux |
Amazon |
Amazon Athena ODBC driver |
2026-04-03T20:13:14.946Z | 2026-04-07T03:55:34.174Z |
| cve-2026-25742 | Zulip: Anonymous File Access After Disabling Spectator… |
zulip |
zulip |
2026-04-03T20:12:07.296Z | 2026-04-08T18:53:28.819Z | |
| cve-2026-32662 | 6.9 (v4.0) 5.3 (v3.1) | Gardyn Cloud API Active Debug Code |
Gardyn |
Cloud API |
2026-04-03T20:11:56.176Z | 2026-04-06T14:51:59.384Z |
| cve-2026-35562 | 7.5 (v3.1) 8.7 (v4.0) | Allocation of resources without limits in parsing comp… |
Amazon |
Amazon Athena ODBC driver |
2026-04-03T20:10:51.206Z | 2026-04-06T15:03:06.176Z |
| cve-2026-35561 | 7.4 (v3.1) 9.1 (v4.0) | Insufficient authentication security controls in brows… |
Amazon |
Amazon Athena ODBC driver |
2026-04-03T20:10:40.591Z | 2026-04-07T13:09:01.619Z |
| cve-2026-35560 | 7.4 (v3.1) 9.1 (v4.0) | Improper certificate validation in identity provider c… |
Amazon |
Amazon Athena ODBC driver |
2026-04-03T20:10:38.830Z | 2026-04-07T13:09:13.079Z |
| cve-2026-25726 | Cloudreve is vulnerable to Account Takeover via Weak C… |
cloudreve |
cloudreve |
2026-04-03T20:06:21.629Z | 2026-04-04T03:21:18.970Z | |
| cve-2026-28798 | Arbitrary internal service access via /v1/sys/proxy wh… |
IceWhaleTech |
ZimaOS |
2026-04-03T20:00:48.045Z | 2026-04-06T15:42:48.777Z |
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2021-avi-392 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2021-05-20T00:00:00.000000 | 2021-05-20T00:00:00.000000 |
| certfr-2021-avi-391 | Multiples vulnérabilités dans Google Chrome OS | 2021-05-19T00:00:00.000000 | 2021-05-19T00:00:00.000000 |
| certfr-2021-avi-390 | Multiples vulnérabilités dans Mozilla Thunderbird | 2021-05-18T00:00:00.000000 | 2021-05-18T00:00:00.000000 |
| certfr-2021-avi-389 | Vulnérabilité dans Apple Boot Camp | 2021-05-18T00:00:00.000000 | 2021-05-18T00:00:00.000000 |
| certfr-2021-avi-388 | Vulnérabilité dans Stormshield Endpoint Security | 2021-05-18T00:00:00.000000 | 2021-05-18T00:00:00.000000 |
| certfr-2021-avi-387 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2021-05-18T00:00:00.000000 | 2021-05-18T00:00:00.000000 |
| certfr-2021-avi-386 | Multiples vulnérabilités dans Moodle | 2021-05-17T00:00:00.000000 | 2021-05-17T00:00:00.000000 |
| certfr-2021-avi-385 | Multiples vulnérabilités dans les produits Siemens | 2021-05-17T00:00:00.000000 | 2021-05-17T00:00:00.000000 |
| certfr-2021-avi-384 | [MaJ] Vulnérabilité dans Pulse Connect Secure | 2021-05-17T00:00:00.000000 | 2021-06-21T00:00:00.000000 |
| certfr-2021-avi-383 | Multiples vulnérabilités dans Microsoft Edge | 2021-05-14T00:00:00.000000 | 2021-05-14T00:00:00.000000 |
| certfr-2021-avi-382 | Vulnérabilité dans MongoDB | 2021-05-14T00:00:00.000000 | 2021-05-14T00:00:00.000000 |
| certfr-2021-avi-381 | Multiples vulnérabilités dans PostgreSQL | 2021-05-14T00:00:00.000000 | 2021-05-14T00:00:00.000000 |
| certfr-2021-avi-380 | Vulnérabilité dans SonicWall Email Security Virtual Appliance | 2021-05-14T00:00:00.000000 | 2021-05-14T00:00:00.000000 |
| certfr-2021-avi-379 | Multiples vulnérabilités dans les produits Qnap | 2021-05-14T00:00:00.000000 | 2021-05-14T00:00:00.000000 |
| certfr-2021-avi-378 | Multiples vulnérabilités dans WordPress | 2021-05-14T00:00:00.000000 | 2021-05-14T00:00:00.000000 |
| certfr-2021-avi-377 | Vulnérabilité dans Belden HiOS et HiSecOS | 2021-05-14T00:00:00.000000 | 2021-05-14T00:00:00.000000 |
| certfr-2021-avi-376 | Multiples vulnérabilités dans Magento | 2021-05-14T00:00:00.000000 | 2021-05-14T00:00:00.000000 |
| certfr-2021-avi-375 | Multiples vulnérabilités dans les produits Wifi Intel | 2021-05-14T00:00:00.000000 | 2021-05-14T00:00:00.000000 |
| certfr-2021-avi-374 | Multiples vulnérabilités dans Tenable Nessus | 2021-05-14T00:00:00.000000 | 2021-05-14T00:00:00.000000 |
| certfr-2021-avi-373 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2021-05-14T00:00:00.000000 | 2021-05-14T00:00:00.000000 |
| certfr-2021-avi-372 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2021-05-14T00:00:00.000000 | 2021-05-14T00:00:00.000000 |
| certfr-2021-avi-371 | Multiples vulnérabilités dans le noyau Linux de Red Hat | 2021-05-14T00:00:00.000000 | 2021-05-14T00:00:00.000000 |
| certfr-2021-avi-370 | Multiples vulnérabilités dans les produits Schneider | 2021-05-12T00:00:00.000000 | 2021-05-12T00:00:00.000000 |
| certfr-2021-avi-369 | Multiples vulnérabilités dans les produits Microsoft | 2021-05-12T00:00:00.000000 | 2021-05-12T00:00:00.000000 |
| certfr-2021-avi-368 | Vulnérabilité dans Microsoft .Net | 2021-05-12T00:00:00.000000 | 2021-05-12T00:00:00.000000 |
| certfr-2021-avi-367 | Multiples vulnérabilités dans Microsoft Windows | 2021-05-12T00:00:00.000000 | 2021-05-12T00:00:00.000000 |
| certfr-2021-avi-366 | Multiples vulnérabilités dans Microsoft Office | 2021-05-12T00:00:00.000000 | 2021-05-12T00:00:00.000000 |
| certfr-2021-avi-365 | Vulnérabilité dans Microsoft IE | 2021-05-12T00:00:00.000000 | 2021-05-12T00:00:00.000000 |
| certfr-2021-avi-364 | Multiples vulnérabilités dans les produits Aruba | 2021-05-12T00:00:00.000000 | 2021-05-12T00:00:00.000000 |
| certfr-2021-avi-363 | Multiples vulnérabilités dans les produits Juniper | 2021-05-12T00:00:00.000000 | 2021-05-12T00:00:00.000000 |