Security
CVE Feed
Latest vulnerabilities from the National Vulnerability Database.
20386
Total
1466
Critical
6177
High
6480
Medium
| CVE ID | Severity | Score | Description | Published |
|---|---|---|---|---|
| CVE-2026-57517 | CRITICAL | 9.8 | Control Web Panel before 0.9.8.1225 contains a blind SQL injection vulnerability that allows unauthenticated remote attackers to execute arbitrary SQL queries by submitting unsanitized input … | Jul 01, 2026 |
| CVE-2026-24270 | CRITICAL | 9.8 | NVIDIA AIStore framework contains a vulnerability where an attacker could bypass authentication. A successful exploit of this vulnerability might lead to denial of service, escalation … | Jul 01, 2026 |
| CVE-2026-24266 | MEDIUM | 5.9 | NVIDIA Triton Inference Server for Linux contains a vulnerability where an attacker can cause a use-after-free issue. A successful exploit of this vulnerability might lead … | Jul 01, 2026 |
| CVE-2026-24264 | HIGH | 7.5 | NVIDIA Triton Inference Server for Linux contains a vulnerability where an attacker can cause improper handling of highly compressed data. A successful exploit of this … | Jul 01, 2026 |
| CVE-2026-24260 | HIGH | 8.5 | NVIDIA Container Toolkit for Linux contains a vulnerability where an attacker could cause a time-of-check time-of-use race condition. A successful exploit of this vulnerability might … | Jul 01, 2026 |
| CVE-2026-24251 | HIGH | 7.8 | NVIDIA Megatron Bridge for Linux contains a vulnerability where an attacker could cause improper control of dynamically managed code resources. A successful exploit of this … | Jul 01, 2026 |
| CVE-2026-24250 | HIGH | 7.8 | NVIDIA Megatron Bridge for Linux contains a vulnerability where an attacker could cause improper validation of allowed inputs. A successful exploit of this vulnerability might … | Jul 01, 2026 |
| CVE-2026-24249 | HIGH | 7.8 | NVIDIA Megatron Bridge for Linux contains a vulnerability where an attacker could cause deserialization of untrusted data. A successful exploit of this vulnerability might lead … | Jul 01, 2026 |
| CVE-2026-24248 | HIGH | 7.8 | NVIDIA Megatron Bridge for Linux contains a vulnerability where an attacker could cause improper control of code generation. A successful exploit of this vulnerability might … | Jul 01, 2026 |
| CVE-2026-24247 | HIGH | 7.8 | NVIDIA Megatron Bridge for Linux contains a vulnerability where an attacker could cause deserialization of untrusted data. A successful exploit of this vulnerability might lead … | Jul 01, 2026 |
| CVE-2026-24246 | HIGH | 7.8 | NVIDIA Megatron Bridge for Linux contains a vulnerability where an attacker could cause improper control of dynamically managed code resources. A successful exploit of this … | Jul 01, 2026 |
| CVE-2026-24245 | HIGH | 7.8 | NVIDIA Megatron Bridge for Linux contains a vulnerability where an attacker could cause deserialization of untrusted data. A successful exploit of this vulnerability might lead … | Jul 01, 2026 |
| CVE-2026-24244 | HIGH | 7.8 | NVIDIA Megatron Bridge for Linux contains a vulnerability where an attacker could cause deserialization of untrusted data. A successful exploit of this vulnerability might lead … | Jul 01, 2026 |
| CVE-2026-24243 | HIGH | 7.8 | NVIDIA Megatron Bridge for Linux contains a vulnerability where an attacker could cause deserialization of untrusted data. A successful exploit of this vulnerability might lead … | Jul 01, 2026 |
| CVE-2026-24242 | HIGH | 7.8 | NVIDIA Megatron Bridge for Linux contains a vulnerability where an attacker could cause server-side request forgery. A successful exploit of this vulnerability might lead to … | Jul 01, 2026 |
| CVE-2026-24240 | HIGH | 7.8 | NVIDIA Megatron Bridge for Linux contains a vulnerability where an attacker could cause deserialization of untrusted data. A successful exploit of this vulnerability might lead … | Jul 01, 2026 |
| CVE-2026-13707 | UNKNOWN | — | Session fixation vulnerability in Wikimedia Foundation OAuth. This vulnerability is associated with program files src/Backend/MWOAuthServer.Php. This issue affects OAuth: from * through 1.46.0, 1.45.4, 1.44.6, … | Jul 01, 2026 |
| CVE-2026-13706 | UNKNOWN | — | Improper input validation vulnerability in Wikimedia Foundation UrlShortener. This vulnerability is associated with program files includes/UrlShortenerUtils.Php. | Jul 01, 2026 |
| CVE-2025-23351 | CRITICAL | 9.0 | NVIDIA ConnectX and BlueField contain a vulnerability in the command interface where a local user with virtual function (VF) access may cause a write out … | Jul 01, 2026 |
| CVE-2025-23350 | CRITICAL | 9.0 | NVIDIA ConnectX and BlueField contain a vulnerability in the command interface where a local user with virtual function (VF) access may cause a write out … | Jul 01, 2026 |
| CVE-2025-15646 | CRITICAL | 9.8 | HTML::Gumbo versions before 0.19 for Perl disclose heap memory via type confusion. Support for the <template> element was added to libgumbo 0.10.0 in 2015, but … | Jul 01, 2026 |
| CVE-2026-6688 | HIGH | 7.6 | FatFs R0.16 and earlier contains a downstream-caller vulnerability pattern associated with FatFs long filename handling. With LFN enabled, fno.fname can be up to 255 characters; … | Jul 01, 2026 |
| CVE-2026-6687 | HIGH | 7.6 | FatFs R0.16 and earlier contains a stack overflow bug in f_getlabel() because exFAT label length (XDIR_NumLabel) is trusted without enforcing spec maximums. This maps to … | Jul 01, 2026 |
| CVE-2026-6686 | MEDIUM | 4.6 | FatFs R0.16 and earlier contains an uninitialized cluster exposure when f_lseek() extends files beyond EOF without zero-filling newly allocated clusters. This maps to CWE-908 (Use … | Jul 01, 2026 |
| CVE-2026-6685 | MEDIUM | 6.1 | FatFs R0.16 and earlier exhibits a stale dirty-cache skip via unsigned-subtraction wrap in f_read() / f_write() (fp->sect - sect < cc) during interleaved read/write on … | Jul 01, 2026 |