Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2026-34122 | 7.1 (v4.0) | Stack-based Buffer Overflow Leading to Denial of Servi… |
TP-Link Systems Inc. |
Tapo C520WS v2.6 |
2026-04-02T17:20:12.471Z | 2026-04-02T17:59:32.667Z |
| cve-2026-34121 | 8.7 (v4.0) | Authentication Bypass in DS Configuration Service via … |
TP-Link Systems Inc. |
Tapo C520WS v2.6 |
2026-04-02T17:20:06.705Z | 2026-04-02T17:58:52.376Z |
| cve-2026-34120 | 7.1 (v4.0) | Heap-based Buffer Overflow Vulnerability Leading to De… |
TP-Link Systems Inc. |
Tapo C520WS v2.6 |
2026-04-02T17:19:58.781Z | 2026-04-02T17:58:08.441Z |
| cve-2026-34119 | 7.1 (v4.0) | Heap-based Buffer Overflow Vulnerability Leading to De… |
TP-Link Systems Inc. |
Tapo C520WS v2.6 |
2026-04-02T17:19:50.931Z | 2026-04-03T13:06:40.136Z |
| cve-2026-34118 | 7.1 (v4.0) | Heap-based Buffer Overflow Vulnerability Leading to De… |
TP-Link Systems Inc. |
Tapo C520WS v2.6 |
2026-04-02T17:19:43.453Z | 2026-04-02T17:48:43.255Z |
| cve-2026-34526 | SillyTavern: Incomplete IP validation in /api/search/v… |
SillyTavern |
SillyTavern |
2026-04-02T17:16:55.897Z | 2026-04-02T17:48:03.787Z | |
| cve-2026-34524 | SillyTavern: Path traversal in `/api/chats/export` and… |
SillyTavern |
SillyTavern |
2026-04-02T17:15:22.819Z | 2026-04-03T18:12:52.047Z | |
| cve-2026-5368 | projectworlds Car Rental Project Parameter login.php s… |
projectworlds |
Car Rental Project |
2026-04-02T17:15:13.177Z | 2026-04-02T17:44:32.432Z | |
| cve-2026-34523 | SillyTavern: Path traversal allows file existence oracle |
SillyTavern |
SillyTavern |
2026-04-02T17:14:31.694Z | 2026-04-03T15:56:24.472Z | |
| cve-2026-34522 | SillyTavern: Path traversal in `/api/chats/import` all… |
SillyTavern |
SillyTavern |
2026-04-02T17:13:44.322Z | 2026-04-02T19:00:48.579Z | |
| cve-2026-26962 | Rack: Header injection in multipart requests |
rack |
rack |
2026-04-02T17:10:17.091Z | 2026-04-03T18:13:06.632Z | |
| cve-2026-34835 | Rack: `Rack::Request` accepts invalid Host characters,… |
rack |
rack |
2026-04-02T17:09:07.047Z | 2026-04-02T17:44:03.453Z | |
| cve-2026-35414 | 4.2 (v3.1) | OpenSSH before 10.3 mishandles the authorized_key… |
OpenBSD |
OpenSSH |
2026-04-02T17:08:15.628Z | 2026-04-02T18:17:04.391Z |
| cve-2026-34827 | Rack: Algorithmic-Complexity DoS in Rack::Multipart::Parser |
rack |
rack |
2026-04-02T17:07:48.279Z | 2026-04-03T18:13:16.834Z | |
| cve-2026-32762 | Rack: Forwarded Header semicolon injection enables Hos… |
rack |
rack |
2026-04-02T17:06:50.819Z | 2026-04-02T17:42:42.305Z | |
| cve-2026-33271 | 6.7 (v3.0) | Local privilege escalation due to insecure folder… |
Acronis |
Acronis True Image |
2026-04-02T17:06:24.089Z | 2026-04-03T03:55:49.028Z |
| cve-2026-27774 | 6.7 (v3.0) | Local privilege escalation due to DLL hijacking v… |
Acronis |
Acronis True Image |
2026-04-02T17:05:19.178Z | 2026-04-03T03:55:47.929Z |
| cve-2026-28728 | 6.7 (v3.0) | Local privilege escalation due to DLL hijacking v… |
Acronis |
Acronis True Image |
2026-04-02T17:04:45.425Z | 2026-04-03T03:55:46.690Z |
| cve-2026-5360 | Free5GC aper type confusion |
n/a |
Free5GC |
2026-04-02T17:00:19.072Z | 2026-04-03T19:59:25.061Z | |
| cve-2026-35388 | 2.5 (v3.1) | OpenSSH before 10.3 omits connection multiplexing… |
OpenBSD |
OpenSSH |
2026-04-02T16:57:31.073Z | 2026-04-02T18:16:41.820Z |
| cve-2026-35387 | 3.1 (v3.1) | OpenSSH before 10.3 can use unintended ECDSA algo… |
OpenBSD |
OpenSSH |
2026-04-02T16:52:53.623Z | 2026-04-03T13:07:56.358Z |
| cve-2026-34830 | Rack: Rack::Sendfile regex injection via HTTP_X_ACCEL_… |
rack |
rack |
2026-04-02T16:47:40.490Z | 2026-04-02T18:59:46.589Z | |
| cve-2026-34829 | Rack: Denial of Service via Unbounded Multipart File U… |
rack |
rack |
2026-04-02T16:46:47.357Z | 2026-04-02T17:41:33.990Z | |
| cve-2026-34826 | Rack: Unbounded Range Count in get_byte_ranges Enables DoS |
rack |
rack |
2026-04-02T16:45:53.964Z | 2026-04-03T18:13:27.375Z | |
| cve-2026-5355 | Trendnet TEW-657BRM setup.cgi vpn_drop os command injection |
Trendnet |
TEW-657BRM |
2026-04-02T16:45:17.025Z | 2026-04-02T18:59:51.603Z | |
| cve-2026-34786 | Rack: Rack::Static header_rules bypass via URL-encoded paths |
rack |
rack |
2026-04-02T16:44:59.694Z | 2026-04-03T17:38:11.143Z | |
| cve-2026-35386 | 3.6 (v3.1) | In OpenSSH before 10.3, command execution can occ… |
OpenBSD |
OpenSSH |
2026-04-02T16:44:27.806Z | 2026-04-03T03:55:45.599Z |
| cve-2026-34785 | Rack: Local file inclusion in `Rack::Static` via URL P… |
rack |
rack |
2026-04-02T16:44:17.134Z | 2026-04-02T18:59:08.828Z | |
| cve-2026-34763 | Rack: Rack::Directory info disclosure and DoS via unes… |
rack |
rack |
2026-04-02T16:43:42.189Z | 2026-04-02T17:41:12.293Z | |
| cve-2026-34831 | Rack: Content-Length mismatch in Rack::Files error responses |
rack |
rack |
2026-04-02T16:43:08.762Z | 2026-04-03T17:48:11.330Z |
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2020-avi-819 | Vulnérabilité dans F5 BIG-IP | 2020-12-14T00:00:00.000000 | 2020-12-14T00:00:00.000000 |
| certfr-2020-avi-818 | Multiples vulnérabilités dans Cisco Jabber | 2020-12-11T00:00:00.000000 | 2020-12-11T00:00:00.000000 |
| certfr-2020-avi-817 | Vulnérabilité dans F5 BIG-IP | 2020-12-11T00:00:00.000000 | 2020-12-11T00:00:00.000000 |
| certfr-2020-avi-816 | Vulnérabilité dans IBM Db2 | 2020-12-10T00:00:00.000000 | 2020-12-10T00:00:00.000000 |
| certfr-2020-avi-815 | Multiples vulnérabilités dans Palo Alto Cortex XDR | 2020-12-10T00:00:00.000000 | 2020-12-10T00:00:00.000000 |
| certfr-2020-avi-814 | Vulnérabilité dans Adobe Acrobat et Acrobat Reader | 2020-12-10T00:00:00.000000 | 2020-12-10T00:00:00.000000 |
| certfr-2020-avi-813 | Multiples vulnérabilités dans Foxit Reader et PhantomPDF | 2020-12-10T00:00:00.000000 | 2020-12-10T00:00:00.000000 |
| certfr-2020-avi-812 | Vulnérabilité dans Apache Struts | 2020-12-10T00:00:00.000000 | 2020-12-10T00:00:00.000000 |
| certfr-2020-avi-811 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2020-12-10T00:00:00.000000 | 2020-12-10T00:00:00.000000 |
| certfr-2020-avi-810 | Vulnérabilité dans le noyau Linux de Red Hat | 2020-12-10T00:00:00.000000 | 2020-12-10T00:00:00.000000 |
| certfr-2020-avi-809 | Multiples vulnérabilités dans Citrix Secure Mail pour Android | 2020-12-10T00:00:00.000000 | 2020-12-10T00:00:00.000000 |
| certfr-2020-avi-808 | Multiples vulnérabilités dans les produits Microsoft | 2020-12-09T00:00:00.000000 | 2020-12-09T00:00:00.000000 |
| certfr-2020-avi-807 | Multiples vulnérabilités dans Microsoft Windows | 2020-12-09T00:00:00.000000 | 2020-12-09T00:00:00.000000 |
| certfr-2020-avi-806 | Multiples vulnérabilités dans Microsoft Office | 2020-12-09T00:00:00.000000 | 2020-12-09T00:00:00.000000 |
| certfr-2020-avi-805 | Multiples vulnérabilités dans Microsoft Edge | 2020-12-09T00:00:00.000000 | 2020-12-09T00:00:00.000000 |
| certfr-2020-avi-804 | Multiples vulnérabilités dans Symantec Messaging Gateway | 2020-12-09T00:00:00.000000 | 2020-12-09T00:00:00.000000 |
| certfr-2020-avi-803 | Vulnérabilité dans OpenSSL | 2020-12-09T00:00:00.000000 | 2020-12-09T00:00:00.000000 |
| certfr-2020-avi-802 | Multiples vulnérabilités dans les produits Schneider Modicon | 2020-12-09T00:00:00.000000 | 2020-12-09T00:00:00.000000 |
| certfr-2020-avi-801 | Multiples vulnérabilités dans les produits Schneider | 2020-12-08T00:00:00.000000 | 2020-12-08T00:00:00.000000 |
| certfr-2020-avi-800 | Multiples vulnérabilités dans les produits Siemens | 2020-12-08T00:00:00.000000 | 2020-12-08T00:00:00.000000 |
| certfr-2020-avi-799 | Multiples vulnérabilités dans les produits SAP | 2020-12-08T00:00:00.000000 | 2020-12-08T00:00:00.000000 |
| certfr-2020-avi-798 | Multiples vulnérabilités dans IBM Db2 | 2020-12-08T00:00:00.000000 | 2020-12-08T00:00:00.000000 |
| certfr-2020-avi-797 | Vulnérabilité dans Tenable Nessus | 2020-12-08T00:00:00.000000 | 2020-12-08T00:00:00.000000 |
| certfr-2020-avi-796 | Multiples vulnérabilités dans GitLab CE et EE | 2020-12-08T00:00:00.000000 | 2020-12-10T00:00:00.000000 |
| certfr-2020-avi-795 | Multiples vulnérabilités dans Google Android | 2020-12-08T00:00:00.000000 | 2020-12-08T00:00:00.000000 |
| certfr-2020-avi-794 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2020-12-08T00:00:00.000000 | 2020-12-08T00:00:00.000000 |
| certfr-2020-avi-793 | Multiples vulnérabilités dans QNAP QTS et QuTS hero | 2020-12-07T00:00:00.000000 | 2020-12-07T00:00:00.000000 |
| certfr-2020-avi-792 | Vulnérabilité dans Apache Tomcat | 2020-12-07T00:00:00.000000 | 2020-12-07T00:00:00.000000 |
| certfr-2020-avi-791 | Multiples vulnérabilités dans Google Chrome OS | 2020-12-04T00:00:00.000000 | 2020-12-04T00:00:00.000000 |
| certfr-2020-avi-790 | Vulnérabilité dans les produits IBM | 2020-12-03T00:00:00.000000 | 2020-12-03T00:00:00.000000 |