CVE search
363,026 resultsCVE-2026-53330—drm/amd/display: Fix out-of-bounds read in dp_get_eq_aux_rd_interval()EPSS —CVE-2026-53329—drm/amd/display: Use krealloc_array() in dal_vector_reserve()EPSS —CVE-2026-53328—sched_ext: Don't warn on NULL cgrp_moving_from in scx_cgroup_move_task()EPSS —CVE-2026-53327—debugobjects: Do not fill_pool() if pi_blocked_onEPSS —CVE-2026-53326—debugobjects: Don't call fill_pool() in early boot hardirq contextEPSS —CVE-2026-5136HIGHForeman: foreman: privilege escalation to administrator-level access via usergroup role assignment manipulationEPSS —CVE-2026-13603CRITICALSSRF with API key leak in pretix-oppwaEPSS —CVE-2026-8387LOWRelative Path Traversal in allegroai/clearmlEPSS —CVE-2026-5120HIGHRace Condition vulnerability affecting BIOVIA Workbook from Release 2021 through Release 2026EPSS —CVE-2026-53909MEDIUMArbitrary File Upload in MCOEPSS —CVE-2026-53908MEDIUMUser Enumeration in MCOEPSS —CVE-2026-53907MEDIUMStored Cross‑Site Scripting in MCOEPSS —CVE-2026-53906MEDIUMPath Disclosure and Path Traversal in MCOEPSS —CVE-2026-53905MEDIUMUnauthorized Access to Administrator ACL View in MCOEPSS —CVE-2026-53904MEDIUMAccount Denial of Service in MCOEPSS —CVE-2026-53903MEDIUMInsecure Direct Object Reference in MCOEPSS —CVE-2026-53902HIGHPrivilege Escalation in MCOEPSS —CVE-2026-14181HIGH@fastify/middie standalone engine vulnerable to Denial of Service via malformed percent-encoded pathsEPSS —CVE-2026-14198CRITICAL@fastify/middie vulnerable to authorization bypass via encoded slash in path parameter valuesEPSS —CVE-2026-13323MEDIUMIn Open VSX Registry before 1.0.2, the /vscode/unpkg/ endpoint serves user-supplied HTML files with Content-Type: text/html and without a CoEPSS —