Vulnerabilidades CVE

A continuación la lista de las últimas vulnerabilidades publicadas por el instituto NIST:

Borrar filtros
CVE ID Publicado Severidad CVSS Descripción
CVE-2025-61952 2026-03-17 MEDIUM 6.1 An out-of-bounds read vulnerability exists in the EMF functionality of Canva Affinity. By using a specially crafted EMF file, an attacker could exploit this vulnerability to perform an…
CVE-2025-58427 2026-03-17 MEDIUM 6.1 An out-of-bounds read vulnerability exists in the EMF functionality of Canva Affinity. By using a specially crafted EMF file, an attacker could exploit this vulnerability to perform an…
CVE-2025-47873 2026-03-17 MEDIUM 6.1 An out-of-bounds read vulnerability exists in the EMF functionality of Canva Affinity. By using a specially crafted EMF file, an attacker could exploit this vulnerability to perform an…
CVE-2026-4319 2026-03-17 HIGH 7.3 A vulnerability was identified in code-projects Simple Food Order System 1.0. Affected by this vulnerability is an unknown functionality of the file /routers/add-item.php. Such manipulation of the argument…
CVE-2026-32298 2026-03-17 CRITICAL 9.1 The Angeet ES3 KVM does not properly sanitize user-supplied variables parsed by the 'cfg.lua' script, allowing an authenticated attacker to execute OS-level commands.
CVE-2026-32297 2026-03-17 HIGH 7.5 The Angeet ES3 KVM allows a remote, unauthenticated attacker to write arbitrary files, including configuration files or system binaries. Modified configuration files or system binaries could allow an…
CVE-2026-32296 2026-03-17 HIGH 8.2 Sipeed NanoKVM before 2.3.1 exposes a Wi-Fi configuration endpoint without proper security checks, allowing an unauthenticated attacker with network access to change the saved configured Wi-Fi network to…
CVE-2026-32295 2026-03-17 HIGH 7.5 JetKVM before 0.5.4 does not rate limit login requests, enabling brute-force attempts to guess credentials.
CVE-2026-32294 2026-03-17 MEDIUM 4.7 JetKVM prior to 0.5.4 does not verify the authenticity of downloaded firmware files. An attacker-in-the-middle or a compromised update server could modify the firmware and the corresponding SHA256…
CVE-2026-32293 2026-03-17 LOW 3.7 The GL-iNet Comet (GL-RM1) KVM connects to a GL-iNet site during boot-up to provision client and CA certificates. The GL-RM1 does not verify certificates used for this connection,…
CVE-2026-32292 2026-03-17 HIGH 7.5 The GL-iNet Comet (GL-RM1) KVM web interface does not limit login requests, enabling brute-force attempts to guess credentials.
CVE-2026-32291 2026-03-17 MEDIUM 6.8 The GL-iNet Comet (GL-RM1) KVM does not require authentication on the UART serial console. This attack requires physically opening the device and connecting to the UART pins.
CVE-2026-32290 2026-03-17 MEDIUM 4.7 The GL-iNet Comet (GL-RM1) KVM does not sufficiently verify the authenticity of uploaded firmware files. An attacker-in-the-middle or a compromised update server could modify the firmware and the…
CVE-2026-25770 2026-03-17 CRITICAL 9.1 Wazuh is a free and open source platform used for threat prevention, detection, and response. Starting in version 3.9.0 and prior to version 4.14.3, a privilege escalation vulnerability…
CVE-2026-25769 2026-03-17 CRITICAL 9.1 Wazuh is a free and open source platform used for threat prevention, detection, and response. Versions 4.0.0 through 4.14.2 have a Remote Code Execution (RCE) vulnerability due to…
CVE-2026-25534 2026-03-17 CRITICAL 9.1 ### Impact Spinnaker updated URL Validation logic on user input to provide sanitation on user inputted URLs for clouddriver. However, they missed that Java URL objects do not…
CVE-2026-21570 2026-03-17 N/A 0.0 This High severity RCE (Remote Code Execution)  vulnerability was introduced in versions 9.6.0, 10.0.0, 10.1.0, 10.2.0, 11.0.0, 11.1.0, 12.0.0, and 12.1.0 of Bamboo Data Center. This RCE (Remote…
CVE-2026-4148 2026-03-17 HIGH 8.8 A use-after-free vulnerability can be triggered in sharded clusters by an authenticated user with the read role who issues a specially crafted $lookup or $graphLookup aggregation pipeline.
CVE-2026-4147 2026-03-17 MEDIUM 6.5 An authenticated user with the read role may read limited amounts of uninitialized stack memory via specially-crafted issuances of the filemd5 command.
CVE-2026-28506 2026-03-17 MEDIUM 4.3 Outline is a service that allows for collaborative documentation. Prior to 1.5.0, the events.list API endpoint, used for retrieving activity logs, contains a logic flaw in its filtering…
CVE-2026-24901 2026-03-17 HIGH 8.1 Outline is a service that allows for collaborative documentation. Prior to 1.4.0, an Insecure Direct Object Reference (IDOR) vulnerability in the document restoration logic allows any team member…
CVE-2026-23759 2026-03-17 HIGH 7.2 Perle IOLAN STS/SCS terminal server models with firmware versions prior to 6.0 allow authenticated OS command injection via the restricted shell accessed over Telnet or SSH. The shell…
CVE-2026-21886 2026-03-17 MEDIUM 6.5 OpenCTI is an open source platform for managing cyber threat intelligence knowledge and observables. Prior to version 6.9.1, the GraphQL mutations "IndividualDeletionDeleteMutation" is intended to allow users to…
CVE-2026-4318 2026-03-17 HIGH 8.8 A vulnerability was determined in UTT HiPER 810G up to 1.7.7-171114. Affected is the function strcpy of the file /goform/formApLbConfig. This manipulation of the argument loadBalanceNameOld causes buffer…
CVE-2026-3564 2026-03-17 CRITICAL 9.0 A condition in ScreenConnect may allow an actor with access to server-level cryptographic material used for authentication to obtain unauthorized access, including elevated privileges, in certain scenarios.
CVE-2025-13406 2026-03-17 N/A 0.0 NULL Pointer Dereference vulnerability in Softing Industrial Automation GmbH smartLink SW-HT (Webserver modules) allows HTTP DoS.This issue affects smartLink SW-HT: 1.43.
CVE-2026-3888 2026-03-17 HIGH 7.8 Local privilege escalation in snapd on Linux allows local attackers to get root privilege by re-creating snap's private /tmp directory when systemd-tmpfiles is configured to automatically clean up…
CVE-2026-33189 2026-03-18 N/A 0.0 Rejected reason: Further research determined the issue originates from a different product.
CVE-2026-33188 2026-03-18 N/A 0.0 Rejected reason: Further research determined the issue originates from a different product.
CVE-2026-33187 2026-03-18 N/A 0.0 Rejected reason: Further research determined the issue originates from a different product.
CVE-2026-32262 2026-03-16 MEDIUM 4.3 Craft CMS is a content management system (CMS). From version 4.0.0-RC1 to before version 4.17.5 and from version 5.0.0-RC1 to before version 5.9.11, the AssetsController->replaceFile() method has a…
CVE-2026-32263 2026-03-16 HIGH 7.2 Craft CMS is a content management system (CMS). From version 5.6.0 to before version 5.9.11, in src/controllers/EntryTypesController.php, the $settings array from parse_str is passed directly to Craft::configure() without…
CVE-2026-32264 2026-03-16 HIGH 7.2 Craft CMS is a content management system (CMS). From version 4.0.0-RC1 to before version 4.17.5 and from version 5.0.0-RC1 to before version 5.9.11, there is a Behavior injection…
CVE-2026-32267 2026-03-16 CRITICAL 9.8 Craft CMS is a content management system (CMS). From version 4.0.0-RC1 to before version 4.17.6 and from version 5.0.0-RC1 to before version 5.9.12, a low-privilege user (or an…
CVE-2026-28779 2026-03-17 HIGH 7.5 Apache Airflow versions 3.1.0 through 3.1.7 session token (_token) in cookies is set to path=/ regardless of the configured [webserver] base_url or [api] base_url. This allows any application co-hosted…
CVE-2026-28563 2026-03-17 MEDIUM 4.3 Apache Airflow versions 3.1.0 through 3.1.7 /ui/dependencies endpoint returns the full DAG dependency graph without filtering by authorized DAG IDs. This allows an authenticated user with only DAG…
CVE-2026-30911 2026-03-17 HIGH 8.1 Apache Airflow versions 3.1.0 through 3.1.7 missing authorization vulnerability in the Execution API's Human-in-the-Loop (HITL) endpoints that allows any authenticated task instance to read, approve, or reject HITL…
CVE-2026-29521 2026-03-16 MEDIUM 4.3 Hereta ETH-IMC408M firmware version 1.0.15 and prior contain a cross-site request forgery vulnerability that allows attackers to modify device configuration by exploiting missing CSRF protections in setup.cgi. Attackers…
CVE-2026-29516 2026-03-16 MEDIUM 4.9 Buffalo TeraStation NAS TS5400R firmware version 4.02-0.06 and prior contain an excessive file permissions vulnerability that allows authenticated attackers to read the /etc/shadow file by uploading and executing…
CVE-2026-29520 2026-03-16 MEDIUM 6.1 Hereta ETH-IMC408M firmware version 1.0.15 and prior contain a reflected cross-site scripting vulnerability in the Network Diagnosis ping function that allows attackers to execute arbitrary JavaScript. Attackers can…
CVE-2026-29513 2026-03-16 MEDIUM 5.4 Hereta ETH-IMC408M firmware version 1.0.15 and prior contain a stored cross-site scripting vulnerability that allows authenticated attackers to inject arbitrary JavaScript by manipulating the Device Location field. Attackers…
CVE-2026-29510 2026-03-16 MEDIUM 5.4 Hereta ETH-IMC408M firmware version 1.0.15 and prior contain a stored cross-site scripting vulnerability that allows authenticated attackers to inject arbitrary JavaScript by manipulating the Device Name field. Attackers…
CVE-2026-26929 2026-03-17 MEDIUM 6.5 Apache Airflow versions 3.0.0 through 3.1.7 FastAPI DagVersion listing API does not apply per-DAG authorization filtering when the request is made with dag_id set to "~" (wildcard for all…
CVE-2025-68971 2026-03-16 HIGH 7.5 In Forgejo through 13.0.3, the attachment component allows a denial of service by uploading a multi-gigabyte file attachment (e.g., to be associated with an issue or a release).
CVE-2026-4324 2026-03-17 MEDIUM 5.4 A flaw was found in the Katello plugin for Red Hat Satellite. This vulnerability, caused by improper sanitization of user-provided input, allows a remote attacker to inject arbitrary…
CVE-2025-62320 2026-03-17 MEDIUM 4.7 HTML Injection can be carried out in Product when a web application does not properly check or clean user input before showing it on a webpage. Because of…
CVE-2026-4271 2026-03-17 MEDIUM 5.3 A flaw was found in libsoup, a library for handling HTTP requests. This vulnerability, known as a Use-After-Free, occurs in the HTTP/2 server implementation. A remote attacker can…
CVE-2025-31966 2026-03-17 LOW 2.7 HCL Sametime is vulnerable to broken server-side validation. While the application performs client-side input checks, these are not enforced by the web server. An attacker can bypass these…
CVE-2026-3634 2026-03-17 LOW 3.9 A flaw was found in libsoup. An attacker controlling the value used to set the Content-Type header can inject a Carriage Return Line Feed (CRLF) sequence due to…
CVE-2026-3633 2026-03-17 LOW 3.9 A flaw was found in libsoup. A remote attacker, by controlling the method parameter of the `soup_message_new()` function, could inject arbitrary headers and additional request data. This vulnerability,…
« Anterior Página 170 de 4214 Siguiente »