Security
CVE Feed
Latest vulnerabilities from the National Vulnerability Database.
23813
Total
1705
Critical
7468
High
7599
Medium
| CVE ID | Severity | Score | Description | Published |
|---|---|---|---|---|
| CVE-2026-24088 | HIGH | 8.2 | Cryptographic Issue while processing a specific partition which allows unauthorized write access to load a customized bootloader. | Jun 01, 2026 |
| CVE-2026-24087 | HIGH | 7.2 | Memory corruption while processing fastboot OEM commands. | Jun 01, 2026 |
| CVE-2026-24085 | HIGH | 7.2 | Memory Corruption when processing display command line information due to improper initialization of a variable. | Jun 01, 2026 |
| CVE-2026-10300 | LOW | 3.7 | A security vulnerability has been detected in SGLang 0.5.10.post1. Impacted is an unknown function of the file python/sglang/srt/lora/lora_manager.py of the component Inference HTTP Endpoint. Such … | Jun 01, 2026 |
| CVE-2026-10299 | LOW | 3.8 | A weakness has been identified in code-projects Online Hospital Management System 1.0. This issue affects some unknown processing of the file viewdoctortimings.php. This manipulation of … | Jun 01, 2026 |
| CVE-2026-10298 | LOW | 3.3 | A security flaw has been discovered in ggml-org whisper.cpp up to 1.8.2. This vulnerability affects the function whisper_model_load of the file ggml/src/ggml.c. The manipulation results … | Jun 01, 2026 |
| CVE-2026-10297 | MEDIUM | 6.3 | A vulnerability was identified in itsourcecode Fees Management System 1.0. This affects an unknown part of the file /manage_course.php. The manipulation of the argument ID … | Jun 01, 2026 |
| CVE-2026-10296 | MEDIUM | 6.3 | A vulnerability was determined in itsourcecode Fees Management System 1.0. Affected by this issue is some unknown functionality of the file /ajax.php. Executing a manipulation … | Jun 01, 2026 |
| CVE-2026-10295 | LOW | 3.3 | A vulnerability was found in SourceCodester Customer Review App 1.0. Affected by this vulnerability is the function add_review/save_review/get_all_reviews of the file review_app.py. Performing a manipulation … | Jun 01, 2026 |
| CVE-2025-59614 | MEDIUM | 6.7 | Memory Corruption when sending random number generator command with insufficient output buffer size. | Jun 01, 2026 |
| CVE-2025-59613 | MEDIUM | 6.7 | Memory Corruption when output buffer size is smaller than input buffer size during data copying operation. | Jun 01, 2026 |
| CVE-2025-59612 | MEDIUM | 6.7 | Memory corruption in windows drivers while sending incorrect trusted application request | Jun 01, 2026 |
| CVE-2025-59611 | MEDIUM | 6.7 | Memory corruption in diagnostic services due to absence of input validation | Jun 01, 2026 |
| CVE-2025-59610 | MEDIUM | 6.4 | Memory Corruption when processing IOCTL requests with mismatched API versions due to concurrent modification of user-space buffer. | Jun 01, 2026 |
| CVE-2025-59609 | MEDIUM | 5.5 | Information Disclosure when processing advertisement frames with malformed MBSSID elements of insufficient length. | Jun 01, 2026 |
| CVE-2025-59606 | HIGH | 7.8 | Memory Corruption when writing to invalid memory locations occurs due to heap memory exhaustion during secure data initialization. | Jun 01, 2026 |
| CVE-2025-59605 | HIGH | 7.8 | Memory Corruption when processing device identifier strings that exceed the expected maximum length. | Jun 01, 2026 |
| CVE-2025-59604 | HIGH | 7.8 | Memory Corruption when running a memory copy operation due to invalid writes caused by a null pointer. | Jun 01, 2026 |
| CVE-2025-59601 | MEDIUM | 6.5 | Information Disclosure when resetting device to factory default settings through powerline interface allows unauthorized access to device configuration. | Jun 01, 2026 |
| CVE-2019-25718 | HIGH | 8.4 | Dräger Infinity Explorer C700 contains a privilege escalation vulnerability that allows attackers to break out of kiosk mode and access the underlying operating system through … | Jun 01, 2026 |
| CVE-2026-49491 | HIGH | 8.2 | Pixa Bank 2.0 contains an SQL injection vulnerability that allows unauthenticated attackers to extract sensitive data by injecting SQL code into the 'rib' parameter. Attackers … | Jun 01, 2026 |
| CVE-2026-40965 | CRITICAL | 10.0 | Cloud Foundry UAA versions v76.12.0 through v78.12.0 are vulnerable to a private key exposure. The server contains a vulnerability where EC (Elliptic Curve) private keys … | Jun 01, 2026 |
| CVE-2026-40964 | HIGH | 7.5 | Authentication Bypass in cf-auth-proxy in Cloud Foundry Foundation all installations allows an unauthenticated remote attacker to gain read access to every log and metric for … | Jun 01, 2026 |
| CVE-2026-28586 | LOW | 3.3 | In multiple functions of AppOpsService.java, there is a possible missing permission check due to a permissions bypass. This could lead to local information disclosure with … | Jun 01, 2026 |
| CVE-2026-28581 | MEDIUM | 4.0 | In fixInitiatingUserIfNecessary of CallIntentProcessor.java, there is a possible way to make an emergency call due to a logic error in the code. This could lead … | Jun 01, 2026 |