Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2026-22742 | 8.6 (v3.1) | Server-Side Request Forgery in BedrockProxyChatModel v… |
Spring |
Spring AI |
2026-03-27T05:27:41.165Z | 2026-03-27T19:39:20.332Z |
| cve-2026-33366 | 5.3 (v3.0) 6.9 (v4.0) | Missing authentication for critical function vuln… |
BUFFALO INC. |
BUFFALO Wi-Fi router products |
2026-03-27T05:25:58.656Z | 2026-03-27T19:37:52.746Z |
| cve-2026-33280 | 7.2 (v3.0) 8.6 (v4.0) | Hidden functionality issue exists in BUFFALO Wi-F… |
BUFFALO INC. |
BUFFALO Wi-Fi router products |
2026-03-27T05:25:41.078Z | 2026-03-27T19:54:05.856Z |
| cve-2026-32678 | 7.5 (v3.0) 8.7 (v4.0) | Authentication bypass issue exists in BUFFALO Wi-… |
BUFFALO INC. |
BUFFALO Wi-Fi router products |
2026-03-27T05:25:19.851Z | 2026-03-27T19:53:19.116Z |
| cve-2026-32669 | 8.8 (v3.0) 8.7 (v4.0) | Code injection vulnerability exists in BUFFALO Wi… |
BUFFALO INC. |
BUFFALO Wi-Fi router products |
2026-03-27T05:24:52.376Z | 2026-03-27T19:52:38.686Z |
| cve-2026-27650 | 8.8 (v3.0) 8.6 (v4.0) | OS Command Injection vulnerability exists in BUFF… |
BUFFALO INC. |
BUFFALO Wi-Fi router products |
2026-03-27T05:24:35.501Z | 2026-03-27T19:58:51.644Z |
| cve-2026-22738 | 9.8 (v3.1) | SpEL Injection via Unescaped Filter Key in SimpleVecto… |
Spring |
Spring AI |
2026-03-27T05:21:07.168Z | 2026-03-28T03:55:47.438Z |
| cve-2026-33559 | 5.4 (v3.0) 5.1 (v4.0) | WordPress Plugin "OpenStreetMap" provided by MiKa… |
MiKa |
OpenStreetMap |
2026-03-27T04:56:41.153Z | 2026-03-27T19:39:20.609Z |
| cve-2026-34353 | 5.9 (v3.1) | In OCaml through 4.14.3, Bigarray.reshape allows … |
OCaml |
OCaml |
2026-03-27T04:55:58.294Z | 2026-03-27T13:45:47.350Z |
| cve-2026-3098 | Smart Slider 3 <= 3.5.1.33 - Authenticated (Subscriber… |
nextendweb |
Smart Slider 3 |
2026-03-27T03:37:07.618Z | 2026-04-08T17:29:18.084Z | |
| cve-2026-4910 | Shenzhen Ruiming Technology Streamax Crocus Endpoint R… |
Shenzhen Ruiming Technology |
Streamax Crocus |
2026-03-27T03:01:03.856Z | 2026-03-27T22:20:39.550Z | |
| cve-2026-4909 | code-projects Exam Form Submission update_s7.php cross… |
code-projects |
Exam Form Submission |
2026-03-27T02:25:24.360Z | 2026-03-27T22:20:59.248Z | |
| cve-2026-4908 | code-projects Simple Laundry System Parameter modstaff… |
code-projects |
Simple Laundry System |
2026-03-27T02:25:22.037Z | 2026-03-27T19:58:56.622Z | |
| cve-2026-4907 | Page-Replica Page Replica Endpoint sitemap sitemap.fet… |
Page-Replica |
Page Replica |
2026-03-27T01:33:14.205Z | 2026-03-27T13:49:21.469Z | |
| cve-2026-4906 | Tenda AC5 POST Request WizardHandle decodePwd stack-ba… |
Tenda |
AC5 |
2026-03-27T00:53:09.317Z | 2026-03-30T11:56:56.348Z | |
| cve-2026-33747 | BuildKit vulnerable to malicious frontend causing file… |
moby |
buildkit |
2026-03-27T00:49:06.165Z | 2026-03-27T19:59:06.907Z | |
| cve-2026-33745 | cpp-httplib Client Leaks Authentication Credentials to… |
yhirose |
cpp-httplib |
2026-03-27T00:46:48.941Z | 2026-04-01T03:55:22.387Z | |
| cve-2026-33744 | BentoML has Dockerfile Command Injection via system_pa… |
bentoml |
BentoML |
2026-03-27T00:45:08.108Z | 2026-03-27T20:01:40.600Z | |
| cve-2026-33935 | MyTube has Unauthenticated Account Lockout via Shared … |
franklioxygen |
MyTube |
2026-03-27T00:43:49.590Z | 2026-03-27T20:02:20.942Z | |
| cve-2026-33890 | MyTube has an Unauthenticated Admin Privilege Escalati… |
franklioxygen |
MyTube |
2026-03-27T00:38:50.089Z | 2026-03-27T13:49:59.015Z | |
| cve-2026-33735 | MyTube has an Improper Access Control that Allows Comp… |
franklioxygen |
MyTube |
2026-03-27T00:36:31.489Z | 2026-03-27T13:50:13.478Z | |
| cve-2026-33730 | Open Source Point of Sale has an IDOR in Password Chan… |
opensourcepos |
opensourcepos |
2026-03-27T00:30:02.069Z | 2026-03-27T19:59:15.920Z | |
| cve-2026-33729 | OpenFGA has an Authorization Bypass through cached keys |
openfga |
openfga |
2026-03-27T00:27:40.726Z | 2026-03-30T11:53:10.107Z | |
| cve-2026-33728 | dd-trace-java: Unsafe deserialization in RMI instrumen… |
DataDog |
dd-trace-java |
2026-03-27T00:25:56.444Z | 2026-03-27T19:57:29.854Z | |
| cve-2026-33726 | Cilium L7 proxy may bypass Kubernetes NetworkPolicy fo… |
cilium |
cilium |
2026-03-27T00:23:21.795Z | 2026-03-27T13:50:24.672Z | |
| cve-2026-33725 | Metabase vulnerable to RCE and Arbitrary File Read via… |
metabase |
metabase |
2026-03-27T00:19:39.397Z | 2026-03-28T03:55:51.956Z | |
| cve-2026-33721 | MapServer has heap buffer overflow in SLD `Categorize`… |
MapServer |
MapServer |
2026-03-27T00:15:00.360Z | 2026-04-17T17:18:03.353Z | |
| cve-2026-33718 | OpenHands is Vulnerable to Command Injection through i… |
OpenHands |
OpenHands |
2026-03-27T00:12:24.752Z | 2026-03-27T20:04:54.607Z | |
| cve-2026-33693 | Lemmy's Activitypub-Federation has SSRF via 0.0.0.0 by… |
LemmyNet |
lemmy |
2026-03-27T00:03:35.946Z | 2026-03-30T11:51:10.425Z | |
| cve-2026-33701 | OpenTelemetry: Unsafe Deserialization in RMI Instrumen… |
open-telemetry |
opentelemetry-java-instrumentation |
2026-03-27T00:01:12.327Z | 2026-03-27T13:52:22.536Z |
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2018-avi-244 | Multiples vulnérabilités dans BIND | 2018-05-22T00:00:00.000000 | 2018-05-22T00:00:00.000000 |
| certfr-2018-avi-243 | Multiples vulnérabilités dans Google Chrome OS | 2018-05-22T00:00:00.000000 | 2018-05-22T00:00:00.000000 |
| certfr-2018-avi-242 | Multiples vulnérabilités dans les produits Tenable | 2018-05-22T00:00:00.000000 | 2018-05-22T00:00:00.000000 |
| certfr-2018-avi-241 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2018-05-17T00:00:00.000000 | 2018-05-17T00:00:00.000000 |
| certfr-2018-avi-240 | Multiples vulnérabilités dans les produits Cisco | 2018-05-17T00:00:00.000000 | 2018-05-17T00:00:00.000000 |
| certfr-2018-avi-239 | Multiples vulnérabilités dans les produits Fortinet | 2018-05-17T00:00:00.000000 | 2018-05-17T00:00:00.000000 |
| certfr-2018-avi-238 | Vulnérabilité dans le client DHCP de RedHat | 2018-05-16T00:00:00.000000 | 2018-05-16T00:00:00.000000 |
| certfr-2018-avi-237 | Multiples vulnérabilités dans Tenable Nessus | 2018-05-16T00:00:00.000000 | 2018-05-16T00:00:00.000000 |
| certfr-2018-avi-236 | Vulnérabilité dans VMware NSX SD-WAN | 2018-05-15T00:00:00.000000 | 2018-05-15T00:00:00.000000 |
| certfr-2018-avi-235 | Vulnérabilité dans SCADA Siemens SIMATIC | 2018-05-15T00:00:00.000000 | 2018-05-15T00:00:00.000000 |
| certfr-2018-avi-234 | Vulnérabilité dans Citrix NetScaler ADC et NetScaler Gateway | 2018-05-15T00:00:00.000000 | 2018-05-15T00:00:00.000000 |
| certfr-2018-avi-233 | Multiples vulnérabilités dans Adobe Reader et Acrobat | 2018-05-14T00:00:00.000000 | 2018-05-14T00:00:00.000000 |
| certfr-2018-avi-232 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2018-05-14T00:00:00.000000 | 2018-05-14T00:00:00.000000 |
| certfr-2018-avi-231 | Multiples vulnérabilités dans Google Chrome | 2018-05-11T00:00:00.000000 | 2018-05-11T00:00:00.000000 |
| certfr-2018-avi-230 | Multiples vulnérabilités dans Mozilla Firefox | 2018-05-11T00:00:00.000000 | 2018-05-11T00:00:00.000000 |
| certfr-2018-avi-229 | Multiples vulnérabilités dans Xen | 2018-05-09T00:00:00.000000 | 2018-05-09T00:00:00.000000 |
| certfr-2018-avi-228 | Multiples vulnérabilités dans le noyau Linux de RedHat | 2018-05-09T00:00:00.000000 | 2018-05-09T00:00:00.000000 |
| certfr-2018-avi-227 | Multiples vulnérabilités dans Google Chrome OS | 2018-05-09T00:00:00.000000 | 2018-05-09T00:00:00.000000 |
| certfr-2018-avi-226 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2018-05-09T00:00:00.000000 | 2018-05-09T00:00:00.000000 |
| certfr-2018-avi-225 | Multiples vulnérabilités dans Citrix XenServer | 2018-05-09T00:00:00.000000 | 2018-05-09T00:00:00.000000 |
| certfr-2018-avi-224 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2018-05-09T00:00:00.000000 | 2018-05-09T00:00:00.000000 |
| certfr-2018-avi-223 | Multiples vulnérabilités dans les produits Microsoft | 2018-05-09T00:00:00.000000 | 2018-05-09T00:00:00.000000 |
| certfr-2018-avi-222 | Multiples vulnérabilités dans Microsoft .Net | 2018-05-09T00:00:00.000000 | 2018-05-09T00:00:00.000000 |
| certfr-2018-avi-221 | Multiples vulnérabilités dans Microsoft Windows | 2018-05-09T00:00:00.000000 | 2018-05-09T00:00:00.000000 |
| certfr-2018-avi-220 | Multiples vulnérabilités dans Microsoft Office | 2018-05-09T00:00:00.000000 | 2018-05-09T00:00:00.000000 |
| certfr-2018-avi-219 | Multiples vulnérabilités dans Microsoft Edge | 2018-05-09T00:00:00.000000 | 2018-05-09T00:00:00.000000 |
| certfr-2018-avi-218 | Multiples vulnérabilités dans Microsoft Internet Explorer | 2018-05-09T00:00:00.000000 | 2018-05-09T00:00:00.000000 |
| certfr-2018-avi-217 | Vulnérabilité dans Adobe Flash Player | 2018-05-09T00:00:00.000000 | 2018-05-09T00:00:00.000000 |
| certfr-2018-avi-216 | Multiples vulnérabilités dans Google Android | 2018-05-09T00:00:00.000000 | 2018-05-09T00:00:00.000000 |
| certfr-2018-avi-215 | Multiples vulnérabilités dans Fortinet FortiWLC | 2018-05-07T00:00:00.000000 | 2018-05-07T00:00:00.000000 |