Vulnerabilidades CVE

A continuación la lista de las últimas vulnerabilidades publicadas por el instituto NIST:

Borrar filtros
CVE ID Publicado Severidad CVSS Descripción
CVE-2026-57879 2026-06-26 CRITICAL 9.8 An unauthenticated stack-based buffer overflow vulnerability exists in ssvr in GeoVision GV-LPC2011 and GV-LPC2211 V1.12 and earlier. The vulnerability is caused by insufficient bounds checking when processing RTSP…
CVE-2026-46602 2026-06-25 HIGH 7.5 The TIFF decoder does not set a limit on the size of tiles in tiled images, permitting a malicious or corrupt image containing a very large tile to…
CVE-2026-46601 2026-06-25 HIGH 7.5 The webp decoder can panic when processing a VP8 chunk with dimensions that do not match the canvas size.
CVE-2026-11702 2026-06-26 HIGH 7.5 Bytes::Random::Secure::Tiny versions through 1.011 for Perl share internal state across forked processes. When an object is initialised before forking, then the internal state for the PRNG is shared…
CVE-2026-11625 2026-06-26 HIGH 7.5 Bytes::Random::Secure versions through 0.29 for Perl share internal state across forked processes. When an object is initialised before forking, or when the functional interface is used, then the…
CVE-2026-10097 2026-06-25 HIGH 7.5 wolfSSL's AVX2-optimized ML-KEM implementation (mlkem_cmp_avx2) compares only 1536 of the 1568 ciphertext bytes during the Fujisaki-Okamoto re-encryption check in ML-KEM-1024 decapsulation. Ciphertexts that differ from the expected re-encryption…
CVE-2026-7531 2026-06-25 CRITICAL 9.8 Use-after-free in PQC hybrid key-share handling. This is an incomplete-fix follow-up to CVE-2026-5460 (released in 5.9.1): a malicious TLS 1.3 server sending a truncated PQC hybrid KeyShare can…
CVE-2026-10512 2026-06-25 HIGH 7.5 The X25519 x86_64 assembly implementation fails to clear the most significant bit during the final modular reduction, so the computed result may not be fully reduced modulo the…
CVE-2026-56789 2026-06-25 MEDIUM 6.5 RTKLIB through 2.4.3 contains a heap buffer overflow vulnerability in the readrnxobsb function in src/rinex.c that allows attackers to trigger memory corruption by failing to clamp satellite count…
CVE-2026-56788 2026-06-25 MEDIUM 4.4 RTKLIB through 2.4.3 contains an out-of-bounds read vulnerability in getcodepri function when processing unrecognized RINEX observation codes, allowing attackers to trigger denial of service. Crafted RINEX files with…
CVE-2026-56787 2026-06-25 MEDIUM 6.5 RTKLIB through 2.4.3 contains an off-by-one out-of-bounds read vulnerability in the decode_ssr3 function at src/rtcm3.c:1446 that allows remote attackers to trigger a global buffer overflow via crafted RTCM3…
CVE-2026-56786 2026-06-25 CRITICAL 9.8 RTKLIB through 2.4.3 contains an out-of-bounds write vulnerability in decode_type1033 function that fails to clamp length counters to destination buffer size, allowing up to 191-byte overflow into fixed…
CVE-2026-50549 2026-06-25 CRITICAL 9.8 Cursor is a code editor built for programming with AI. Prior to 3.0, Cursor runs agent terminal commands in a sandbox by default. Before a Write, the agent…
CVE-2026-50548 2026-06-25 CRITICAL 9.8 Cursor is a code editor built for programming with AI. Prior to 3.0, Cursor runs agent terminal commands in a sandbox by default, and the sandbox grants write…
CVE-2026-57473 2026-06-26 N/A 0.0 A vulnerability exists in the netclient and factory services of Reolink Home Hub (versions prior to v3.3.0.456_26031911) due to the possibility of brute-force cracking the credentials. This issue…
CVE-2026-13322 2026-06-26 LOW 3.8 A flaw was found in KubeVirt's downward metrics virtio-serial server. The server reads guest requests using textproto.Reader.ReadLine(), which buffers input indefinitely until a newline character is received, with…
CVE-2026-13318 2026-06-26 MEDIUM 6.4 A server-side request forgery (SSRF) flaw was found in KubeVirt's virt-api port-forward handler. When processing a port-forward request to a VirtualMachineInstance (VMI), virt-api reads the target IP from…
CVE-2026-13218 2026-06-26 MEDIUM 4.2 A flaw was found in KubeVirt's virt-handler network cache handling. The WriteToCachedFile function writes data to a launcher-rooted path using os.WriteFile and os.Chown without symlink protection. A user…
CVE-2026-13083 2026-06-26 MEDIUM 6.9 A flaw was found in the Pen Drive report generator. Cluster-sourced data is rendered into HTML reports without proper escaping or sanitization. An attacker with cluster administrator privileges…
CVE-2026-12993 2026-06-26 MEDIUM 6.5 A flaw was found in Apicurio Registry. The DocumentBuilderAccessor correctly blocks external DTD and schema access but does not disable DOCTYPE declarations or enable FEATURE_SECURE_PROCESSING. An attacker with…
CVE-2026-12992 2026-06-25 HIGH 7.4 A flaw was found in Apicurio Registry. The WSDLReaderAccessor creates a wsdl4j WSDLReader without disabling the javax.wsdl.importDocuments feature. When the VALIDITY rule is set to FULL, an attacker…
CVE-2026-12975 2026-06-25 HIGH 8.5 A flaw was found in Apicurio Registry. The ContentTypeUtil.isParsableXml() method creates a SAXParserFactory without enabling secure processing features or disabling external entity resolution. An attacker with artifact-write permission…
CVE-2026-11800 2026-06-25 HIGH 8.1 A flaw was found in Keycloak. This JWT algorithm confusion vulnerability in the JWT Authorization Grant flow allows an attacker with valid client credentials to bypass signature verification.…
CVE-2025-71338 2026-06-25 CRITICAL 10.0 Flowise contains a path traversal vulnerability in the /api/v1/document-store/loader/process endpoint that allows unauthenticated attackers to write arbitrary files to the filesystem. Attackers can exploit unsanitized fileName parameters with…
CVE-2025-71336 2026-06-25 CRITICAL 9.8 Flowise before 3.0.6 (affected versions 2.2.7-patch.1 and earlier) contains an unsandboxed remote code execution vulnerability in the Custom MCP feature, which is designed to execute OS commands such…
CVE-2025-71334 2026-06-25 CRITICAL 9.8 Flowise before 3.0.6 (affected versions 2.2.8 and earlier) contains an arbitrary file access vulnerability due to missing validation that the chatflowId and chatId parameters are UUIDs or numbers…
CVE-2025-71333 2026-06-25 N/A 0.0 Flowise through 2.2.4 contains an unauthenticated arbitrary file upload vulnerability in the /api/v1/attachments endpoint when storageType is set to local. Attackers can exploit path traversal in the chatId…
CVE-2025-71328 2026-06-25 HIGH 8.3 Flowise before 3.0.10 contains an unverified password change vulnerability. An authenticated user can change their account password through the account settings (Security) section without supplying the current password…
CVE-2025-71327 2026-06-25 CRITICAL 9.1 Flowise contains an authentication bypass vulnerability in the unprotected /api/v1/account/register endpoint that allows unauthenticated attackers to create user accounts. Remote attackers can exploit this endpoint to register arbitrary…
CVE-2025-71324 2026-06-25 HIGH 7.5 Flowise before 3.0.6 contains an arbitrary file read vulnerability in the chatId parameter of the /api/v1/get-upload-file and /api/v1/openai-assistants-file/download endpoints. The chatId value is not validated and is passed…
CVE-2021-47986 2026-06-25 HIGH 7.5 Parse Server before 4.10.0 contains a supply chain vulnerability where incorrect version tags were pushed to the repository linking to unreviewed code in a personal fork. Attackers could…
CVE-2026-57913 2026-06-26 HIGH 7.5 Johnson & Johnson Audit Tracking Management System (ATMS) before 2026-04-21 allows viewing of meeting minutes and transcripts.
CVE-2026-57912 2026-06-26 HIGH 7.5 Johnson & Johnson Campus Recruiting before 2025-10-31 allows viewing of data provided by recruited students, and notes entered about students by interviewers.
CVE-2026-8380 2026-06-26 MEDIUM 6.5 The Frontend File Manager Plugin WordPress plugin through 23.6 does not properly verify ownership of every targeted post before permanent deletion, allowing authenticated users with author-level access and…
CVE-2026-10835 2026-06-26 HIGH 7.7 The SALESmanago & Leadoo WordPress plugin before 3.11.3 does not properly sanitise and escape a parameter passed to one of its AJAX actions before using it in a…
CVE-2026-10823 2026-06-26 HIGH 7.5 The YMC Filter WordPress plugin before 3.11.3 does not properly authorize access to one of its REST API endpoints and does not validate a user-supplied query parameter, allowing…
CVE-2025-10268 2026-06-26 MEDIUM 5.3 The Printcart Web to Print Product Designer for WooCommerce WordPress plugin through 2.4.8 is vulnerable to path traversal which makes it possible for the attacker to retrieve the…
CVE-2025-71340 2026-06-25 HIGH 8.1 picklescan through 0.0.26 fails to detect malicious pickle files that invoke idlelib.pyshell.ModifiedInterpreter.runcode in __reduce__ methods. Attackers can embed undetected code in pickle files that executes arbitrary commands when…
CVE-2026-9699 2026-06-26 MEDIUM 6.8 Mattermost Plugins versions
CVE-2026-57665 2026-06-26 MEDIUM 5.3 Unauthenticated Insecure Direct Object References (IDOR) in GravityView
CVE-2026-57878 2026-06-26 CRITICAL 9.8 An unauthenticated stack-based buffer overflow vulnerability exists in thttpd in GeoVision GV-LPC2011 and GV-LPC2211 V1.12 and earlier. The vulnerability is caused by insufficient bounds checking when processing web…
CVE-2026-57877 2026-06-26 HIGH 8.6 An unauthenticated format string vulnerability exists in vlsvr in GeoVision GV-LPC2011 and GV-LPC2211 V1.12 and earlier. The vulnerability is caused by improper handling of externally controlled input during…
CVE-2026-57876 2026-06-26 HIGH 7.5 An unauthenticated out-of-bounds write vulnerability exists in onvif.cgi in GeoVision GV-LPC2011 and GV-LPC2211 V1.12 and earlier. The vulnerability is caused by insufficient bounds checking when processing HTTP request…
CVE-2026-57875 2026-06-26 HIGH 7.5 An unauthenticated NULL pointer dereference vulnerability exists in the HTTP request parsing logic of multiple CGI components in GeoVision GV-LPC2011 and GV-LPC2211 V1.12 and earlier. The vulnerability is…
CVE-2026-57874 2026-06-26 HIGH 7.5 An unauthenticated buffer overflow vulnerability exists in IEEE8021x_upload.cgi in GeoVision GV-LPC2011 and GV-LPC2211 V1.12 and earlier. The vulnerability is caused by insufficient bounds checking when parsing filename values…
CVE-2026-57873 2026-06-26 HIGH 7.5 An unauthenticated NULL pointer dereference vulnerability exists in IEEE8021x_upload.cgi in GeoVision GV-LPC2011 and GV-LPC2211 V1.12 and earlier. The vulnerability is caused by improper validation of multipart upload headers…
CVE-2026-57872 2026-06-26 HIGH 7.5 An unauthenticated directory traversal vulnerability exists in get_fcont.cgi in GeoVision GV-LPC2011 and GV-LPC2211 V1.12 and earlier. The vulnerability is caused by insufficient validation of user-supplied file path input…
CVE-2026-57664 2026-06-26 MEDIUM 4.3 Unauthenticated Sensitive Data Exposure in Bopo – WooCommerce Product Bundle Builder
CVE-2026-57659 2026-06-26 HIGH 8.8 Unauthenticated Cross Site Request Forgery (CSRF) in Paid Memberships Pro - Add Member From Admin
CVE-2026-57658 2026-06-26 CRITICAL 9.1 Administrator Arbitrary File Upload in TemplateSpare
« Anterior Página 8 de 4502 Siguiente »