Vulnerabilidades CVE

A continuación la lista de las últimas vulnerabilidades publicadas por el instituto NIST:

Borrar filtros
CVE ID Publicado Severidad CVSS Descripción
CVE-2026-43616 2026-05-04 HIGH 7.1 Detect-It-Easy prior to 3.21 contains a path traversal vulnerability that allows attackers to write arbitrary files to the filesystem by crafting malicious archive entries with relative traversal sequences…
CVE-2026-42796 2026-05-04 CRITICAL 9.8 Arelle before 2.39.10 contains an unauthenticated remote code execution vulnerability in the /rest/configure REST endpoint that accepts a plugins query parameter and forwards it to the plugin manager…
CVE-2026-42810 2026-05-04 CRITICAL 9.9 Apache Polaris accepts literal `*` characters in namespace and table names. When it later builds temporary S3 access policies for delegated table access, those same characters appear to…
CVE-2026-42440 2026-05-04 N/A 0.0 OOM Denial of Service via Unbounded Array Allocation in Apache OpenNLP AbstractModelReader  Versions Affected:  before 2.5.9 before 3.0.0-M3  Description: The AbstractModelReader methods getOutcomes(), getOutcomePatterns(), and getPredicates() each read…
CVE-2026-42146 2026-05-04 MEDIUM 5.5 CImg Library is a C++ library for image processing. Prior to commit c3aacf5, the nb_colors field read from the BMP file header is used directly to compute an…
CVE-2026-42144 2026-05-04 MEDIUM 6.1 CImg Library is a C++ library for image processing. Prior to commit 4ca26bc, there is an integer overflow vulnerability in the W*H*D size computation inside _load_pnm() that can…
CVE-2026-42140 2026-05-04 MEDIUM 4.4 PlantUML Macro is a macro for rendering UML diagrams from simple textual schemes. Prior to version 2.4.1, the PlantUML Macro is vulnerable to Server-Side Request Forgery (SSRF). The…
CVE-2026-42092 2026-05-04 MEDIUM 6.5 titra is an open source time tracking project. In version 0.99.52, the globalsettings Meteor publication returns all global settings without any admin or role check. Any authenticated user…
CVE-2026-42091 2026-05-04 MEDIUM 6.5 goshs is a SimpleHTTPServer written in Go. Prior to version 2.0.2, the PUT upload handler (httpserver/updown.go) lacks the CSRF token validation that was added to the POST upload…
CVE-2026-42084 2026-05-04 HIGH 8.1 OpenC3 COSMOS provides the functionality needed to send commands to and receive data from one or more embedded systems. Prior to versions 6.10.5 and 7.0.0-rc3, the OpenC3 password…
CVE-2026-42052 2026-05-04 N/A 0.0 Beets is the media library management system. Prior to version 2.10.0, the bundled web UI uses Underscore template interpolation mode for untrusted metadata fields. In this runtime, is…
CVE-2026-42075 2026-05-04 HIGH 8.1 Evolver is a GEP-powered self-evolving engine for AI agents. Prior to version 1.69.3, a path traversal vulnerability in the skill download (fetch) command allows attackers to write files…
CVE-2026-41471 2026-05-04 HIGH 7.5 Easy PayPal Events & Tickets plugin for WordPress versions 1.3 and earlier contain an information disclosure vulnerability in the QR code scanning endpoint that allows unauthenticated attackers to…
CVE-2026-42027 2026-05-04 N/A 0.0 Arbitrary Class Instantiation via Model Manifest in Apache OpenNLP ExtensionLoader Versions Affected: before 2.5.9, before 3.0.0-M3 Description:  The ExtensionLoader.instantiateExtension(Class, String) method loads a class by its fully-qualified name via…
CVE-2026-40682 2026-05-04 N/A 0.0 XML External Entity (XXE) via Unsanitized Dictionary Parsing in Apache OpenNLP DictionaryEntryPersistor Versions Affected: before 2.5.9, before 3.0.0-M3 Description: The DictionaryEntryPersistor class initializes a static SAXParserFactory at class-load…
CVE-2026-32834 2026-05-04 HIGH 7.5 Easy PayPal Events & Tickets plugin for WordPress version 1.3 and earlier contain a hardcoded authentication bypass vulnerability in the QR code scanning functionality that allows unauthenticated remote…
CVE-2026-2828 2026-05-04 N/A 0.0 Rejected reason: ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. Reason: This candidate was issued in error. Notes: All references and descriptions in this candidate have been…
CVE-2026-29004 2026-05-04 HIGH 8.1 BusyBox before commit 42202bf contains a heap buffer overflow vulnerability in the DHCPv6 client (udhcpc6) DNS_SERVERS option handler in networking/udhcp/d6_dhcpc.c that allows network-adjacent attackers to trigger memory corruption…
CVE-2025-70071 2026-05-04 MEDIUM 5.9 An issue in Assimp v.6.0.2 allows a remote attacker to cause a denial of service via the FBXParser.cpp, ParseVectorDataArray()
CVE-2025-70069 2026-05-04 HIGH 7.5 An issue in Assimp v.6.0.2 allows a remote attacker to cause a denial of service via the FBXConverter.cpp and ConvertMeshMultiMaterial() method
CVE-2026-42812 2026-05-04 CRITICAL 9.9 In Apache Iceberg, the table's metadata files are control files: they tell readers which data files belong to the table and which table version to read. `write.metadata.path` is…
CVE-2026-42811 2026-05-04 CRITICAL 9.9 In plain terms, Apache Polaris is supposed to issue short-lived GCS credentials that only work for one table's files, but a crafted namespace or table name can cause…
CVE-2026-42809 2026-05-04 CRITICAL 9.9 Apache Polaris can issue broad temporary ("vended") storage credentials during staged table creation before the effective table location has been validated or durably reserved. Those temporary credentials are…
CVE-2026-42376 2026-05-04 CRITICAL 9.8 D-Link DIR-456U Hardware Revision A1 (End-of-Life, EOL) contains a hardcoded telnet backdoor. The device starts a telnet daemon at boot via /etc/init0.d/S80telnetd.sh with the username "Alphanetworks" and the…
CVE-2026-42375 2026-05-04 CRITICAL 9.8 D-Link DIR-600L Hardware Revision A1 (End-of-Life) contains a hardcoded telnet backdoor. The device starts a telnet daemon at boot via /bin/telnetd.sh with the username "Alphanetworks" and the static…
CVE-2026-42374 2026-05-04 CRITICAL 9.8 D-Link DIR-600L Hardware Revision B1 (End-of-Life) contains a hardcoded telnet backdoor. The device starts a telnet daemon at boot via /bin/telnetd.sh with the username "Alphanetworks" and the static…
CVE-2026-42373 2026-05-04 CRITICAL 9.8 D-Link DIR-605L Hardware Revision B2 (End-of-Life, EOL) contains a hardcoded telnet backdoor. The device starts a telnet daemon at boot via /bin/telnetd.sh with the username "Alphanetworks" and the…
CVE-2026-42372 2026-05-04 HIGH 8.8 D-Link DIR-605L Hardware Revision A1 (End-of-Life, EOL) contains a hardcoded telnet backdoor. The device starts a telnet daemon at boot via /bin/telnetd.sh with the username "Alphanetworks" and the…
CVE-2026-42090 2026-05-04 CRITICAL 9.6 Notesnook is a note-taking app focused on user privacy & ease of use. Prior to Notesnook Web/Desktop version 3.3.15 and prior to Notesnook iOS/Android version 3.3.20, a stored…
CVE-2026-42080 2026-05-04 MEDIUM 4.6 PPTAgent is an agentic framework for reflective PowerPoint generation. Prior to commit 418491a, there is an arbitrary file write vulnerability via `save_generated_slides`. This issue has been patched via…
CVE-2026-42078 2026-05-04 MEDIUM 4.6 PPTAgent is an agentic framework for reflective PowerPoint generation. Prior to commit 418491a, PPTAgent is vulnerable to arbitrary file write and directory creation via markdown_table_to_image. This issue has…
CVE-2026-42077 2026-05-04 MEDIUM 5.2 Evolver is a GEP-powered self-evolving engine for AI agents. Prior to version 1.69.3, a prototype pollution vulnerability in the mailbox store module allows attackers to modify the behavior…
CVE-2026-42076 2026-05-04 CRITICAL 9.8 Evolver is a GEP-powered self-evolving engine for AI agents. Prior to version 1.69.3, a command injection vulnerability in the _extractLLM() function allows attackers to execute arbitrary shell commands…
CVE-2026-37461 2026-05-04 N/A 0.0 An out-of-bounds read in the ParseIP6Extended function (/bgp/bgp.go) of gobgp v4.3.0 allows attackers to cause a Denial of Service (DoS) via supplying a crafted BGP UPDATE message.
CVE-2026-40563 2026-05-04 HIGH 7.1 Description: Improper Control of Generation of Code ('Code Injection') vulnerability in Apache Atlas Apache Atlas exposes a DSL search endpoint that accepts user-supplied query strings. Attacker can alter…
CVE-2026-29514 2026-05-04 HIGH 8.8 NetBox versions 4.3.5 through 4.5.4 contain a remote code execution vulnerability in the RenderTemplateMixin.get_environment_params() method that allows authenticated users with exporttemplate or configtemplate permissions to execute arbitrary code…
CVE-2026-25293 2026-05-04 CRITICAL 9.6 Buffer overflow due to incorrect authorization in PLC FW
CVE-2026-25266 2026-05-04 MEDIUM 5.5 Memory corruption while processing IOCTL command when device is in power-save state.
CVE-2026-24781 2026-05-04 CRITICAL 9.8 vm2 is an open source vm/sandbox for Node.js. Prior to version 3.11.0, VM2 suffers from a sandbox breakout vulnerability through the inspect function. This allows attackers to write…
CVE-2026-24082 2026-05-04 HIGH 7.8 Memory Corruption when copying data from a freed source while executing performance counter deselect operation.
CVE-2025-47408 2026-05-04 HIGH 7.8 Memory corruption when another driver calls an IOCTL with invalid input/output buffer.
CVE-2025-47407 2026-05-04 HIGH 7.8 Memory corruption while creating a process on the digital signal processor due to allocation failure at the kernel level.
CVE-2025-47406 2026-05-04 MEDIUM 6.1 Information Disclosure while processing IOCTL handler callbacks without verifying buffer size.
CVE-2025-47405 2026-05-04 HIGH 7.8 Memory corruption when processing camera sensor input/output control codes with invalid output buffers.
CVE-2025-47404 2026-05-04 MEDIUM 6.5 Memory corruption when dynamically changing the size of a previously allocated buffer while its contents are being modified.
CVE-2025-47403 2026-05-04 MEDIUM 6.5 Transient DOS when processing a malformed Fast Transition response frame with an invalid header structure during wireless roaming.
CVE-2025-47401 2026-05-04 MEDIUM 6.5 Transient DOS when processing target power rate tables during channel configuration.
CVE-2026-37458 2026-05-04 N/A 0.0 Missing input validation in the MP_REACH_NLRI component of FRRouting (FRR) stable/10.0 to stable/10.6 allows authenticated attackers to cause a Denial of Service (DoS) via supplying a crafted UPDATE…
CVE-2026-36365 2026-05-04 N/A 0.0 An issue in Lymphatus caesium-image-compressor All versions up to and including commit 02da2c6 allows a local attacker to execute arbitrary code via the shutdownMachine and putMachineToSleep functions in…
CVE-2025-70072 2026-05-04 MEDIUM 6.5 An issue in Assimp v.6.0.2 allows a remote attacker to cause a denial of service via the FBXConverter.cpp, FBXConverter::ConvertMeshMultiMaterial() components
« Anterior Página 238 de 4474 Siguiente »