Security
CVE Feed
Latest vulnerabilities from the National Vulnerability Database.
11202
Total
755
Critical
3234
High
3640
Medium
| CVE ID | Severity | Score | Description | Published |
|---|---|---|---|---|
| CVE-2026-5443 | UNKNOWN | — | A heap buffer overflow vulnerability exists during the decoding of `PALETTE COLOR` DICOM images. Pixel length validation uses 32-bit multiplication for width and height calculations. … | Apr 09, 2026 |
| CVE-2026-5442 | UNKNOWN | — | A heap buffer overflow vulnerability exists in the DICOM image decoder. Dimension fields are encoded using Value Representation (VR) Unsigned Long (UL), instead of the … | Apr 09, 2026 |
| CVE-2026-5441 | UNKNOWN | — | An out-of-bounds read vulnerability exists in the `DecodePsmctRle1` function of `DicomImageDecoder.cpp`. The `PMSCT_RLE1` decompression routine, which decodes the proprietary Philips Compression format, does not properly … | Apr 09, 2026 |
| CVE-2026-5440 | UNKNOWN | — | A memory exhaustion vulnerability exists in the HTTP server due to unbounded use of the `Content-Length` header. The server allocates memory directly based on the … | Apr 09, 2026 |
| CVE-2026-5439 | UNKNOWN | — | A memory exhaustion vulnerability exists in ZIP archive processing. Orthanc automatically extracts ZIP archives uploaded to certain endpoints and trusts metadata fields describing the uncompressed … | Apr 09, 2026 |
| CVE-2026-5438 | UNKNOWN | — | A gzip decompression bomb vulnerability exists when Orthanc processes HTTP request with `Content-Encoding: gzip`. The server does not enforce limits on decompressed size and allocates … | Apr 09, 2026 |
| CVE-2026-5437 | UNKNOWN | — | An out-of-bounds read vulnerability exists in `DicomStreamReader` during DICOM meta-header parsing. When processing malformed metadata structures, the parser may read beyond the bounds of the … | Apr 09, 2026 |
| CVE-2026-4116 | UNKNOWN | — | Improper handling of Unicode encoding in SonicWall SMA1000 series appliances allows a remote authenticated SSLVPN user to bypass Workplace/Connect Tunnel TOTP authentication. | Apr 09, 2026 |
| CVE-2026-4114 | UNKNOWN | — | Improper handling of Unicode encoding in SonicWall SMA1000 series appliances allows a remote authenticated SSLVPN admin to bypass AMC TOTP authentication. | Apr 09, 2026 |
| CVE-2026-4113 | UNKNOWN | — | An observable response discrepancy vulnerability in the SonicWall SMA1000 series appliances allows a remote attacker to enumerate SSL VPN user credentials. | Apr 09, 2026 |
| CVE-2026-4112 | UNKNOWN | — | Improper neutralization of special elements used in an SQL command (“SQL Injection”) in SonicWall SMA1000 series appliances allows a remote authenticated attacker with read-only administrator … | Apr 09, 2026 |
| CVE-2026-34757 | MEDIUM | 5.1 | LIBPNG is a reference library for use in applications that read, create, and manipulate PNG (Portable Network Graphics) raster image files. From 1.0.9 to before … | Apr 09, 2026 |
| CVE-2026-34578 | HIGH | 8.2 | OPNsense is a FreeBSD based firewall and routing platform. Prior to 26.1.6, OPNsense's LDAP authentication connector passes the login username directly into an LDAP search … | Apr 09, 2026 |
| CVE-2025-70811 | UNKNOWN | — | Cross Site Request Forgery vulnerability in Phpbb phbb3 v.3.3.15 allows a local attacker to execute arbitrary code via the Admin Control Panel icon management functionality. | Apr 09, 2026 |
| CVE-2025-70810 | UNKNOWN | — | Cross Site Request Forgery vulnerability in Phpbb phbb3 v.3.3.15 allows a local attacker to execute arbitrary code via the login function and the authentication mechanism | Apr 09, 2026 |
| CVE-2025-62718 | UNKNOWN | — | Axios is a promise based HTTP client for the browser and Node.js. Prior to 1.15.0, Axios does not correctly handle hostname normalization when checking NO_PROXY … | Apr 09, 2026 |
| CVE-2025-50228 | UNKNOWN | — | Jizhicms v2.5.4 is vulnerable to Server-Side Request Forgery (SSRF) in User Evaluation, Message, and Comment modules. | Apr 09, 2026 |
| CVE-2026-4660 | HIGH | 7.5 | HashiCorp’s go-getter library up to v1.8.5 may allow arbitrary file reads on the file system during certain git operations through a maliciously crafted URL. This … | Apr 09, 2026 |
| CVE-2025-45806 | MEDIUM | 6.1 | A cross-site scripting (XSS) vulnerability in rrweb-snapshot before v2.0.0-alpha.18 allows attackers to execute arbitrary web scripts or HTML via a crafted payload. | Apr 09, 2026 |
| CVE-2026-3005 | MEDIUM | 6.4 | The List category posts plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'catlist' shortcode in all versions up to, and including, … | Apr 09, 2026 |
| CVE-2026-2519 | MEDIUM | 5.3 | The Online Scheduling and Appointment Booking System – Bookly plugin for WordPress is vulnerable to price manipulation via the 'tips' parameter in all versions up … | Apr 09, 2026 |
| CVE-2026-24661 | LOW | 3.7 | Mattermost Plugins versions <=2.1.3.0 fail to limit the request body size on the {{/changes}} webhook endpoint which allows an authenticated attacker to cause memory exhaustion … | Apr 09, 2026 |
| CVE-2026-21388 | LOW | 3.7 | Mattermost Plugins versions <=2.3.1 fail to limit the request body size on the {{/lifecycle}} webhook endpoint which allows an authenticated attacker to cause memory exhaustion … | Apr 09, 2026 |
| CVE-2025-57735 | CRITICAL | 9.1 | When user logged out, the JWT token the user had authtenticated with was not invalidated, which could lead to reuse of that token in case … | Apr 09, 2026 |
| CVE-2024-1490 | HIGH | 7.2 | An authenticated remote attacker with high privileges can exploit the OpenVPN configuration via the web-based management interface of a WAGO PLC. If user-defined scripts are … | Apr 09, 2026 |