CVE search
363,368 resultsCVE-2026-53488CRITICALcontainerd CRI plugin: — image-config `LABEL` flows to restart-monitor `binary://` logger: host-root command execution from an image pullEPSS 0.2%CVE-2026-41579LOWrunc: Malicious image with /dev symlink can trigger limited host filesystem integrity violationsEPSS 0.2%CVE-2026-36912HIGHA NULL pointer dereference in the AP4_AtomSampleTable::GetSample() function of Aleksoid1978 MPC-BE before commit 4341cb3 allows attackers toEPSS 0.3%CVE-2026-51946MEDIUMSQL Injection vulnerability in GoAdminGroup GoAdmin (last release v1.2.26) allows a remote attacker to execute arbitrary code and obtain senEPSS 0.3%CVE-2026-36911MEDIUMA division-by-zero vulnerability in the CStreamSwitcherOutputPin::DecideBufferSize function of Aleksoid1978 MPC-BE before commit 4341cb3 allEPSS 0.1%CVE-2026-36909MEDIUMA NULL pointer dereference in the AP4_TkhdAtom::GetTrackId() function of Aleksoid1978 MPC-BE before commit 4341cb3 allows attackers to causeEPSS 0.1%CVE-2026-36910MEDIUMAn access violation in the BaseSplitterFile::Read function of Aleksoid1978 MPC-BE before commit 4341cb3 allows attackers to cause a Denial oEPSS 0.1%CVE-2026-52190HIGHBuffer Overflow vulnerability in UTT nv518G nv518GV3v3.2.7-210919-161313 allows a remote attacker to cause a denial of service via the goheaEPSS 0.5%CVE-2026-52186CRITICALSQL Injection vulnerability in UTT nv518G nv518GV3v3.2.7-210919-161313 allows a remote attacker to execute arbitrary code via the gohead/subEPSS 0.5%CVE-2026-51947CRITICALAn issue in Pivotal CRM 6.6.4.08 and systems using patch-ghi-15381-cwe-502-20251225.zip (fixed in Pivotal CRM 6.6.5.10 and Patch_CWE502_2026EPSS 1.1%CVE-2026-38891HIGHAn improper input validation in the gazebo_ros_diff_drive.cpp component of gazebo_plugins v3.9.0 allows attackers to cause a Denial of ServiEPSS 0.3%CVE-2026-38142MEDIUMAn unauthenticated command injection vulnerability in the /goform/fast_setting_internet_set endpoint of Tenda AC18 v15.03.05.05 allows attacEPSS 0.7%CVE-2026-54903MEDIUMOj: Integer Overflow in Oj.load 2GB String HandlingEPSS 0.3%CVE-2026-54902MEDIUMOj: Use-After-Free in Oj::Parser SAJ Long Key CallbackEPSS 0.3%CVE-2026-54901MEDIUMOj: Use-After-Free in Oj::Parser array_class/hash_class GC MarkingEPSS 0.3%CVE-2026-54900MEDIUMOj: Negative-Size memcpy in Oj::Parser create_id Attribute HandlingEPSS 0.3%CVE-2026-54898LOWOj: Use-After-Free in Oj::Parser SAJ Callback via Input MutationEPSS 0.1%CVE-2026-54897LOWOj : Use-After-Free in Oj::Doc Iterators via Reentrant CloseEPSS 0.1%CVE-2026-54896LOWOj: Heap Buffer Overflow in Oj.dump Exception Serialization via Large IndentEPSS 0.1%CVE-2026-54592HIGHOj: Stack Buffer Overflow in Oj::Doc#each_child via Deeply Nested InputEPSS 0.3%