Security
CVE Feed
Latest vulnerabilities from the National Vulnerability Database.
20648
Total
1489
Critical
6270
High
6549
Medium
| CVE ID | Severity | Score | Description | Published |
|---|---|---|---|---|
| CVE-2026-46710 | UNKNOWN | — | Notepad++ is a free and open-source source code editor. From 8.9.4 until 8.9.6, Notepad++ contains a local privilege escalation vulnerability in the installer. During installation, … | Jun 26, 2026 |
| CVE-2026-46604 | UNKNOWN | — | The TIFF decoder can panic when decoding an invalid image with an out-of-bounds strip offset. | Jun 26, 2026 |
| CVE-2026-39031 | UNKNOWN | — | Lansweeper lsrunase 2.0 and lsencrypt 2.0 use RC4 encryption with a hardcoded 142-byte static key array to encrypt credentials. An 8-character prefix is stored in … | Jun 26, 2026 |
| CVE-2026-38641 | UNKNOWN | — | An issue in the DSO::mmap_and_copy function of relibc commit 61f42d allows attackers to cause a Denial of Service (DoS) via loading a crafted shared library. | Jun 26, 2026 |
| CVE-2026-38639 | UNKNOWN | — | An issue in the parse_month function (/time/strptime.rs) of relibc commit ab6a2e allows attackers to cause a Denial of Service (DoS) via parsing a crafted input. | Jun 26, 2026 |
| CVE-2024-23581 | MEDIUM | 6.7 | The HCL Traveler for Microsoft Outlook libraries are being flagged as potentially malicious software or an unrecognized application. | Jun 26, 2026 |
| CVE-2026-55838 | MEDIUM | 4.3 | RustFS is a distributed object storage system built in Rust. In 1.0.0-beta.7 and earlier, the real-time metrics endpoint at /rustfs/admin/v3/metrics is accessible to any valid … | Jun 26, 2026 |
| CVE-2026-55189 | HIGH | 7.7 | RustFS is a distributed object storage system built in Rust. From 1.0.0-alpha.1 until 1.0.0-beta.9, when the FTP frontend is enabled, the FTP read and probe … | Jun 26, 2026 |
| CVE-2026-55188 | HIGH | 8.2 | RustFS is a distributed object storage system built in Rust. From 1.0.0-alpha.1 until 1.0.0-beta.9, RustFS contains an authorization bypass in the bucket replication admin API. … | Jun 26, 2026 |
| CVE-2026-53324 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: net: mana: Use pci_name() for debugfs directory naming Use pci_name(pdev) for the per-device debugfs directory … | Jun 26, 2026 |
| CVE-2026-53323 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: net: dsa: remove redundant netdev_lock_ops() from conduit ethtool ops DSA replaces the conduit (master) device's … | Jun 26, 2026 |
| CVE-2026-53322 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: vfio/pci: Clean up DMABUFs before disabling function On device shutdown, make vfio_pci_core_close_device() call vfio_pci_dma_buf_cleanup() before … | Jun 26, 2026 |
| CVE-2026-53321 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: io_uring/napi: cap busy_poll_to 10 msec Currently there's no cap on the maximum amount of time … | Jun 26, 2026 |
| CVE-2026-53320 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: nilfs2: reject zero bd_oblocknr in nilfs_ioctl_mark_blocks_dirty() nilfs_ioctl_mark_blocks_dirty() uses bd_oblocknr to detect dead blocks by comparing … | Jun 26, 2026 |
| CVE-2026-53319 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: blk-wbt: remove WARN_ON_ONCE from wbt_init_enable_default() wbt_init_enable_default() uses WARN_ON_ONCE to check for failures from wbt_alloc() and … | Jun 26, 2026 |
| CVE-2026-53318 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7925: prevent NULL pointer dereference in mt7925_tx_check_aggr() Move the NULL check for 'sta' … | Jun 26, 2026 |
| CVE-2026-53317 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7921: Place upper limit on station AID Any station configured with an AID … | Jun 26, 2026 |
| CVE-2026-53316 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: drm/amd/ras: Fix NULL deref in ras_core_ras_interrupt_detected() Fixes a NULL pointer dereference when ras_core is NULL … | Jun 26, 2026 |
| CVE-2026-53315 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: drm/amd/ras: Fix NULL deref in ras_core_get_utc_second_timestamp() ras_core_get_utc_second_timestamp() retrieves the current UTC timestamp (in seconds since … | Jun 26, 2026 |
| CVE-2026-53314 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: padata: Put CPU offline callback in ONLINE section to allow failure syzbot reported the following … | Jun 26, 2026 |
| CVE-2026-53313 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Avoid NULL dereference in dc_dmub_srv error paths In dc_dmub_srv_log_diagnostic_data() and dc_dmub_srv_enable_dpia_trace(). Both functions check: … | Jun 26, 2026 |
| CVE-2026-53312 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: iommu/riscv: Remove overflows on the invalidation path Since RISC-V supports a sign extended page table … | Jun 26, 2026 |
| CVE-2026-53311 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: fuse: fix uninit-value in fuse_dentry_revalidate() fuse_dentry_revalidate() may be called with a dentry that didn't had … | Jun 26, 2026 |
| CVE-2026-53310 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: soc/tegra: cbb: Fix cross-fabric target timeout lookup When a fabric receives an error interrupt, the … | Jun 26, 2026 |
| CVE-2026-53309 | UNKNOWN | — | In the Linux kernel, the following vulnerability has been resolved: ocfs2/dlm: fix off-by-one in dlm_match_regions() region comparison The local-vs-remote region comparison loop uses '<=' instead … | Jun 26, 2026 |