Updated every minute
Recent CVEs
The 50 most recently published HIGH and CRITICAL CVEs. Pulled from the upstream CVE Project V5 mirror within minutes of publication. New entries are submitted to IndexNow on every ingest cycle.
- CVE-2026-446822026-06-03Local privilege escalation due to DLL hijacking vulnerabilityAcronis / Acronis DeviceLock DLPHIGH7.3v3.0
- CVE-2026-420612026-06-03Local privilege escalation due to excessive permissions assigned to child processesAcronis / Acronis DeviceLock DLPHIGH7.3v3.0
- CVE-2026-500332026-06-03Local privilege escalation due to DLL hijacking vulnerabilityAcronis / Acronis DeviceLock DLPHIGH7.3v3.0
- CVE-2026-446092026-06-03Local privilege escalation due to EXE hijacking vulnerabilityAcronis / Acronis DeviceLock DLPHIGH7.3v3.0
- CVE-2026-78882026-06-03Concrete CMS below 9.5.2 is vulnerable to PHP Object Injection via unserialize() calls in the Workflow, Form block, and File/Set components that lack the allowed_classes restriction.Concrete CMS / Concrete CMSHIGH8.4v4.0
- CVE-2026-402902026-06-03OP-TEE has a Use-After-Free race in FF-A shared-memory teardownOP-TEE / optee_osHIGH7.8v3.1
- CVE-2026-202302026-06-03A vulnerability in Cisco Unified Communications Manager (Unified CM) and Cisco Unified Communications Manager Session Management Edition (Unified CM SME) could allow an unauthenticated, remote attacker to conduct server-side request forgery (SSRF) attacks through an affected deviCisco / Cisco Unified Communications ManagerHIGH8.6v3.1
- CVE-2026-423212026-06-03GLPI has stored XSS in asset locksglpi-project / glpiHIGH8.4v4.0
- CVE-2026-423182026-06-03GLPI Vulnerable to Arbitrary Item Deletion via Planning Endpointglpi-project / glpiHIGH7.0v4.0
- CVE-2026-423172026-06-03GLPI vulnerable to arbitrary files deletion by technicianglpi-project / glpiHIGH7.0v4.0
- CVE-2026-442812026-06-03GLPI vulnerable to unauthorized reading of a specific asset objectglpi-project / glpiHIGH7.0v4.0
- CVE-2026-52412026-06-03Policy Bypass in LightGlue Nested Config Resolution in huggingface/transformershuggingface / huggingface/transformersHIGH8.0v3.0
- CVE-2026-350852026-06-03Stack buffer overflow in method gdv-serverconfigMBS / Single-A · MBS / Double-A Profibus · MBS / Double-A x-linkHIGH8.7v4.0
- CVE-2026-350842026-06-03Stack buffer overflow in method dali-devconfigMBS / Single-A · MBS / Double-A Profibus · MBS / Double-A x-linkHIGH8.7v4.0
- CVE-2026-350832026-06-03Stack buffer overflow in method bac-deviceobjectMBS / Single-A · MBS / Double-A Profibus · MBS / Double-A x-linkHIGH8.7v4.0
- CVE-2026-350822026-06-03Local file inclusion vulnerability and deletion in ugw-logread methodMBS / Single-A · MBS / Double-A Profibus · MBS / Double-A x-linkHIGH8.7v4.0
- CVE-2026-350812026-06-03Arbitrary process termination vulnerability in method ugw-logstopMBS / Single-A · MBS / Double-A Profibus · MBS / Double-A x-linkHIGH7.2v4.0
- CVE-2026-350802026-06-03Arbitrary file delete vulnerability in method ugw-restoreinfoMBS / Single-A · MBS / Double-A Profibus · MBS / Double-A x-linkHIGH7.2v4.0
- CVE-2026-350792026-06-03Arbitrary file delete vulnerability in method ugw-restoreMBS / Single-A · MBS / Double-A Profibus · MBS / Double-A x-linkHIGH7.2v4.0
- CVE-2026-350782026-06-03Arbitrary file delete vulnerability in method ugw-logstopMBS / Single-A · MBS / Double-A Profibus · MBS / Double-A x-linkHIGH7.2v4.0
- CVE-2026-350772026-06-03Arbitrary file delete vulnerability in method ugw-delete-fileMBS / Single-A · MBS / Double-A Profibus · MBS / Double-A x-linkHIGH7.2v4.0
- CVE-2026-350762026-06-03Arbitrary file delete vulnerability in method bac-scanresultMBS / Single-A · MBS / Double-A Profibus · MBS / Double-A x-linkHIGH7.2v4.0
- CVE-2026-350752026-06-03Hardcoded default Password for Service AccountMBS / Single-A · MBS / Double-A Profibus · MBS / Double-A x-linkCRITICAL9.3v4.0
- CVE-2026-410322026-06-03Phoenix Contact: Unauthenticated log download vulnerability in the firmware of CHARX SEC-3xxx charging controllersPhoenix Contact / CHARX SEC-3150 · Phoenix Contact / CHARX SEC-3100 · Phoenix Contact / CHARX SEC-3050HIGH7.5v3.1
- CVE-2026-470652026-06-03Apache MINA: Critical Deserialization Allow-list Bypass via resolveProxyClass - ZDRES-232Apache Software Foundation / Apache MINACRITICAL9.8v3.1
- CVE-2026-40352026-06-03Environment Variable Resolution Vulnerability in mlflow/mlflowmlflow / mlflow/mlflowCRITICAL9.1v3.0
- CVE-2026-500312026-06-03ipmi-oem in FreeIPMI before 1FreeIPMI / FreeIPMIHIGH7.5v3.1
- CVE-2026-95162026-06-03Cpanel::JSON::XS versions before 4.41 for Perl allow denial of service via UTF-8 BOM prefixed input when a decode filter callback throwsRURBAN / Cpanel::JSON::XSHIGH7.5v3.1
- CVE-2026-93342026-06-03Cpanel::JSON::XS versions before 4.41 for Perl allow type confusion via duplicate object keys when dupkeys_as_arrayref is enabledRURBAN / Cpanel::JSON::XSHIGH7.3v3.1
- CVE-2026-365762026-06-03An OS command injection vulnerability in the appn/a / n/aCRITICAL9.8v3.1
- CVE-2026-366082026-06-03Mercusys AC12G (EU) V1 router with firmware AC12G(EU)_V1_200909 allows UPnP AddPortMapping to forward external ports to the router's own admin interface by accepting its own IP (192n/a / n/aHIGH8.8v3.1
- CVE-2026-367482026-06-03RockRMS v16n/a / n/aCRITICAL9.0v3.1
- CVE-2026-366072026-06-03Mercusys AC12G (EU) V1 router with firmware AC12G(EU)_V1_200909 allows unauthenticated brute-force attacks via the TDDP password change endpoint (code=10), which lacks the rate limiting applied to the login endpoint (code=7)n/a / n/aHIGH8.8v3.1
- CVE-2026-366112026-06-03Mercusys AC12G (EU) V1 with firmware AC12G(EU)_V1_200909 returns 128 bytes of uninitialized buffer when receiving POST requests without SOAPAction header on UPnP port 1900, exposing internal memory to unauthenticated adjacent network attackersn/a / n/aHIGH7.3v3.1
- CVE-2026-366062026-06-03Mercusys AC12G (EU) V1 router with firmware AC12G(EU)_V1_200909 encrypts configuration backups with a hardcoded DES key using single DES in ECB moden/a / n/aHIGH7.1v3.1
- CVE-2026-366092026-06-03Mercusys AC12G (EU) V1 router with firmware AC12G(EU)_V1_200909 uses a static authentication nonce that does not change between requests from the same source IPn/a / n/aHIGH7.3v3.1
- CVE-2026-374622026-06-03An integer underflow in the BGPUpdaten/a / n/aHIGH7.3v3.1
- CVE-2026-401082026-06-02GLPI Vulnerable to Stored XSS in ITIL Costsglpi-project / glpiHIGH7.1v4.0
- CVE-2026-354822026-06-02alf.io has an Authenticated RCE via Extension Script Sandbox Escapealfio-event / alf.ioHIGH8.0v3.1
- CVE-2026-326252026-06-02LibreChat Exfiltrates Server Secrets via MCP Server URL Injectiondanny-avila / LibreChatCRITICAL9.6v3.1
- CVE-2026-319422026-06-02LibreChat has IDOR in API Keys Management that allows any authenticated user to overwrite other users' API keysdanny-avila / LibreChatHIGH7.1v3.1
- CVE-2026-258612026-06-02QloApps 1.7.0 Weak Password Hashing via MD5 in Tools.phpQloApps / QloAppsHIGH8.2v4.0
- CVE-2026-425042026-06-02Quadratic complexity in WordDecoder.DecodeHeader in mimeGo standard library / mimeHIGH7.5v3.1
- CVE-2026-89362026-06-02Unbounded recursion in grpcfuse kernel module allows container to crash Docker Desktop VMDocker / Docker DesktopHIGH8.2v4.0
- CVE-2026-491442026-06-02BrowserStack Runner 0.9.5 Path Traversal via _default HTTP Handlerbrowserstack / browserstack-runnerHIGH7.1v4.0
- CVE-2026-494482026-06-02authentik: SourceStage bypass via empty POSTgoauthentik / authentikCRITICAL9.8v3.1
- CVE-2026-491432026-06-02BrowserStack Runner 0.9.5 Unauthenticated RCE via /_log HTTP Handlerbrowserstack / browserstack-runnerHIGH8.7v4.0
- CVE-2026-494432026-06-02authentik: `UserSourceConnection.user` and `GroupSourceConnection.group` are changeable through the APIgoauthentik / authentikHIGH8.8v3.1
- CVE-2026-472012026-06-02authentik: XML Signature Wrapping in SAML Source ACS allows authentication as arbitrary federated usergoauthentik / authentikHIGH8.5v3.1
- CVE-2026-428492026-06-02authentik: Reflected XSS in SFE AutosubmitStage allows IDP account takeovergoauthentik / authentikCRITICAL9.3v3.1