Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2026-3116 | 4.9 (v3.1) | Improper Input Validation in Zoom Plugin Webhook Handler |
Mattermost |
Mattermost |
2026-03-26T16:19:32.607Z | 2026-03-26T17:51:14.971Z |
| cve-2026-3113 | 5 (v3.1) | mmctl export download command doesn’t restrict permiss… |
Mattermost |
Mattermost |
2026-03-26T16:18:06.693Z | 2026-03-26T17:51:15.160Z |
| cve-2026-3108 | 8 (v3.1) | Terminal Escape Injection in mmctl Report Posts Command |
Mattermost |
Mattermost |
2026-03-26T16:16:49.790Z | 2026-03-27T03:55:41.498Z |
| cve-2026-4867 | 7.5 (v3.1) | path-to-regexp vulnerable to Regular Expression Denial… |
path-to-regexp |
path-to-regexp |
2026-03-26T16:16:25.501Z | 2026-03-26T16:52:14.893Z |
| cve-2026-26073 | EVerest: OCPP 1.6 heap corruption caused by lock-free … |
EVerest |
everest-core |
2026-03-26T16:15:22.789Z | 2026-03-26T19:52:11.240Z | |
| cve-2026-4897 | 5.5 (v3.1) | Polkit: polkit: denial of service via unbounded input … |
Red Hat |
Red Hat Enterprise Linux 10 |
2026-03-26T14:56:05.943Z | 2026-03-30T15:53:47.626Z |
| cve-2026-26072 | EVerest has race-condition-induced std::map corruption… |
EVerest |
everest-core |
2026-03-26T14:50:15.206Z | 2026-03-26T18:48:59.324Z | |
| cve-2026-26071 | EVerest: OCPP 2.0.1 EVCCID Data Race Leads to Heap Use… |
EVerest |
everest-core |
2026-03-26T14:48:30.499Z | 2026-03-26T19:52:11.381Z | |
| cve-2026-26070 | EVerest: OCPP 2.0.1 EV SoC Update Race Causes Charge P… |
EVerest |
everest-core |
2026-03-26T14:45:36.877Z | 2026-03-26T18:24:32.921Z | |
| cve-2026-26008 | EVerest has OOB via EVSE ID Indexing Mismatch in OCPP … |
EVerest |
everest-core |
2026-03-26T14:43:41.711Z | 2026-03-26T19:52:11.512Z | |
| cve-2026-23995 | EVerest has stack buffer overflow in ifreq.ifr_name wh… |
EVerest |
everest-core |
2026-03-26T14:36:30.551Z | 2026-03-26T18:48:26.145Z | |
| cve-2026-22790 | EVerest's unchecked SLAC payload length causes stack o… |
EVerest |
everest-core |
2026-03-26T14:31:44.486Z | 2026-03-26T15:19:36.246Z | |
| cve-2026-28298 | 5.9 (v3.1) | SolarWinds Observability Self-Hosted Stored Cross-Site… |
SolarWinds |
SolarWinds Observability Self-Hosted |
2026-03-26T14:08:49.449Z | 2026-03-27T03:55:35.745Z |
| cve-2026-27664 | A vulnerability has been identified in CPCI85 Cen… |
Siemens |
CPCI85 Central Processing/Communication |
2026-03-26T14:03:21.993Z | 2026-04-14T18:24:39.273Z | |
| cve-2026-27663 | A vulnerability has been identified in CPCI85 Cen… |
Siemens |
CPCI85 Central Processing/Communication |
2026-03-26T14:03:20.787Z | 2026-04-14T18:24:38.079Z | |
| cve-2026-28297 | 6.1 (v3.1) | SolarWinds Observability Self-Hosted Stored Cross-Site… |
SolarWinds |
SolarWinds Observability Self-Hosted |
2026-03-26T14:01:37.526Z | 2026-03-27T03:55:35.217Z |
| cve-2026-22593 | EVerest has off-by-one stack buffer overflow in IsoMux… |
EVerest |
everest-core |
2026-03-26T13:49:26.695Z | 2026-03-28T02:20:37.830Z | |
| cve-2026-33397 | Angular SSR Vulnerable to Protocol-Relative URL Inject… |
angular |
angular-cli |
2026-03-26T13:46:16.145Z | 2026-03-30T14:56:05.822Z | |
| cve-2026-33396 | OneUptime has sandbox escape in Synthetic Monitor Play… |
OneUptime |
oneuptime |
2026-03-26T13:40:12.145Z | 2026-03-26T13:56:13.442Z | |
| cve-2026-33413 | etcd: Authorization bypasses in multiple APIs |
etcd-io |
etcd |
2026-03-26T13:36:10.919Z | 2026-03-26T18:51:42.935Z | |
| cve-2026-2389 | Complianz – GDPR/CCPA Cookie Consent <= 7.4.4.2 - Auth… |
complianz |
Complianz – GDPR/CCPA Cookie Consent |
2026-03-26T13:26:06.919Z | 2026-04-08T17:18:32.100Z | |
| cve-2026-1032 | Conditional Menus <= 1.2.6 - Cross-Site Request Forger… |
themifyme |
Conditional Menus |
2026-03-26T13:26:06.519Z | 2026-04-08T17:03:20.048Z | |
| cve-2026-2231 | Fluent Booking <= 2.0.01 - Unauthenticated Stored Cros… |
techjewel |
Fluent Booking – The Ultimate Appointments Scheduling, Events Booking, Events Calendar Solution |
2026-03-26T13:26:06.173Z | 2026-04-08T16:46:19.413Z | |
| cve-2026-2511 | JS Help Desk – AI-Powered Support & Ticketing System <… |
rabilal |
JS Help Desk – AI-Powered Support & Ticketing System |
2026-03-26T13:26:05.601Z | 2026-04-08T16:43:19.181Z | |
| cve-2019-25650 | 8.6 (v4.0) 8.4 (v3.1) | River Past CamDo 3.7.6 Structured Exception Handler Bu… |
riverpast |
River Past CamDo |
2026-03-26T13:24:20.734Z | 2026-03-26T18:52:11.464Z |
| cve-2019-25649 | 6.8 (v4.0) 5.5 (v3.1) | River Past Audio Converter 7.7.16 Local Buffer Overflow DoS |
riverpast |
River Past Audio Converter |
2026-03-26T13:24:20.028Z | 2026-03-26T18:24:51.477Z |
| cve-2019-25648 | 6.9 (v4.0) 6.2 (v3.1) | MyVideoConverter Pro 3.14 Denial of Service Buffer Overflow |
Ivideogo |
MyVideoConverter Pro |
2026-03-26T13:24:19.319Z | 2026-03-26T18:52:29.783Z |
| cve-2018-25219 | 8.6 (v4.0) 8.4 (v3.1) | PassFab Excel Password Recovery 8.3.1 SEH Buffer Overflow |
Passfab |
Excel Password Recovery |
2026-03-26T13:24:18.674Z | 2026-03-26T14:29:18.899Z |
| cve-2018-25218 | 8.6 (v4.0) 8.4 (v3.1) | PassFab RAR Password Recovery 9.3.2 SEH Buffer Overflow |
Passfab |
RAR Password Recovery |
2026-03-26T13:24:18.014Z | 2026-03-28T02:19:51.015Z |
| cve-2018-25217 | 8.6 (v4.0) 8.4 (v3.1) | PDF Explorer 1.5.66.2 Structured Exception Handler Loc… |
Rttsoftware |
PDF Explorer |
2026-03-26T13:24:17.314Z | 2026-03-26T13:57:21.296Z |
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2017-avi-458 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2017-12-11T00:00:00.000000 | 2017-12-13T00:00:00.000000 |
| certfr-2017-avi-457 | Multiples vulnérabilités dans SCADA Schneider Electric EcoStruxure Substation Operation | 2017-12-11T00:00:00.000000 | 2017-12-11T00:00:00.000000 |
| certfr-2017-avi-456 | Multiples vulnérabilités dans Microsoft Malware Protection Engine | 2017-12-08T00:00:00.000000 | 2017-12-08T00:00:00.000000 |
| certfr-2017-avi-455 | Multiples vulnérabilités dans Mozilla Firefox | 2017-12-08T00:00:00.000000 | 2017-12-08T00:00:00.000000 |
| certfr-2017-avi-454 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2017-12-08T00:00:00.000000 | 2017-12-08T00:00:00.000000 |
| certfr-2017-avi-453 | Vulnérabilité dans Fortinet FortiClient | 2017-12-08T00:00:00.000000 | 2017-12-08T00:00:00.000000 |
| certfr-2017-avi-452 | Multiples vulnérabilités dans OpenSSL | 2017-12-08T00:00:00.000000 | 2017-12-08T00:00:00.000000 |
| certfr-2017-avi-451 | Multiples vulnérabilités dans les produits Apple | 2017-12-07T00:00:00.000000 | 2017-12-07T00:00:00.000000 |
| certfr-2017-avi-450 | Multiples vulnérabilités dans Google Chrome | 2017-12-07T00:00:00.000000 | 2017-12-07T00:00:00.000000 |
| certfr-2017-avi-449 | Multiples vulnérabilités dans Google Android | 2017-12-05T00:00:00.000000 | 2017-12-05T00:00:00.000000 |
| certfr-2017-avi-448 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2017-12-05T00:00:00.000000 | 2017-12-07T00:00:00.000000 |
| certfr-2017-avi-447 | Multiples vulnérabilités dans SCADA Schneider Electric Pelco VideoXpert Enterprise | 2017-12-05T00:00:00.000000 | 2017-12-05T00:00:00.000000 |
| certfr-2017-avi-446 | Multiples vulnérabilités dans Mozilla Firefox | 2017-12-05T00:00:00.000000 | 2017-12-05T00:00:00.000000 |
| certfr-2017-avi-445 | Multiples vulnérabilités dans Apache Struts 2 | 2017-12-05T00:00:00.000000 | 2017-12-05T00:00:00.000000 |
| certfr-2017-avi-444 | Multiples vulnérabilités dans Citrix XenServer | 2017-12-04T00:00:00.000000 | 2017-12-04T00:00:00.000000 |
| certfr-2017-avi-443 | Vulnérabilité dans Asterisk | 2017-12-04T00:00:00.000000 | 2017-12-04T00:00:00.000000 |
| certfr-2017-avi-442 | Multiples vulnérabilités dans Wireshark | 2017-12-01T00:00:00.000000 | 2017-12-01T00:00:00.000000 |
| certfr-2017-avi-441 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2017-12-01T00:00:00.000000 | 2017-12-01T00:00:00.000000 |
| certfr-2017-avi-440 | Vulnérabilité dans le noyau Linux de RedHat | 2017-12-01T00:00:00.000000 | 2017-12-01T00:00:00.000000 |
| certfr-2017-avi-439 | Multiples vulnérabilités dans PHP | 2017-12-01T00:00:00.000000 | 2017-12-01T00:00:00.000000 |
| certfr-2017-avi-438 | Multiples vulnérabilités dans WordPress | 2017-11-30T00:00:00.000000 | 2017-11-30T00:00:00.000000 |
| certfr-2017-avi-437 | Multiples vulnérabilités dans SCADA Siemens SWT3000 | 2017-11-30T00:00:00.000000 | 2017-11-30T00:00:00.000000 |
| certfr-2017-avi-436 | Multiples vulnérabilités dans Cisco WebEx Network Recording Player | 2017-11-30T00:00:00.000000 | 2017-11-30T00:00:00.000000 |
| certfr-2017-avi-435 | Vulnérabilité dans Apple macOS High Sierra | 2017-11-30T00:00:00.000000 | 2017-11-30T00:00:00.000000 |
| certfr-2017-avi-434 | Multiples vulnérabilités dans Magento | 2017-11-29T00:00:00.000000 | 2017-11-29T00:00:00.000000 |
| certfr-2017-avi-433 | Multiples vulnérabilités dans Xen | 2017-11-28T00:00:00.000000 | 2017-11-28T00:00:00.000000 |
| certfr-2017-avi-430 | Vulnérabilité dans Cisco Unified Computing System Manager et Firepower 9000 | 2017-11-28T00:00:00.000000 | 2017-11-28T00:00:00.000000 |
| certfr-2017-avi-432 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2017-11-27T00:00:00.000000 | 2017-12-01T00:00:00.000000 |
| certfr-2017-avi-431 | Multiples vulnérabilités dans Mozilla Thunderbird | 2017-11-27T00:00:00.000000 | 2017-11-27T00:00:00.000000 |
| certfr-2017-avi-429 | Vulnérabilité dans Fortinet FortiOS | 2017-11-24T00:00:00.000000 | 2017-11-24T00:00:00.000000 |