| CVE-2026-49848 |
unknown |
freeswitch |
FreeSWITCH is a Software Defined Telecom Stack enabling the digital transformation from... |
| CVE-2026-49847 |
unknown |
freeswitch |
FreeSWITCH is a Software Defined Telecom Stack enabling the digital transformation from... |
| CVE-2026-49843 |
unknown |
freeswitch |
FreeSWITCH is a Software Defined Telecom Stack enabling the digital transformation from... |
| CVE-2026-49842 |
unknown |
freeswitch |
FreeSWITCH is a Software Defined Telecom Stack enabling the digital transformation from... |
| CVE-2026-49841 |
unknown |
freeswitch |
FreeSWITCH is a Software Defined Telecom Stack enabling the digital transformation from... |
| CVE-2026-49840 |
unknown |
freeswitch |
FreeSWITCH is a Software Defined Telecom Stack enabling the digital transformation from... |
| CVE-2026-49475 |
unknown |
freeswitch |
FreeSWITCH is a Software Defined Telecom Stack enabling the digital transformation from... |
| CVE-2026-49472 |
unknown |
freeswitch |
FreeSWITCH is a Software Defined Telecom Stack enabling the digital transformation from... |
| CVE-2026-45771 |
unknown |
freeswitch |
FreeSWITCH is a Software Defined Telecom Stack enabling the digital transformation from... |
| CVE-2026-49975 |
unknown |
nginx |
Memory Allocation with Excessive Size Value vulnerability in Apache HTTP Server's mod_http leads... |
| CVE-2026-50292 |
unknown |
libinput |
In libinput before 1.30.4 and 1.31.x before 1.31.3, libinput-device-group unescaped phys output... |
| CVE-2026-9309 |
unknown |
firefox |
Firefox for iOS Reader View did not properly escape HTML tags in JSON-LD metadata. A malicious... |
| CVE-2026-9308 |
unknown |
firefox |
Firefox for iOS Reader View replaced page content in its HTML template before replacing other... |
| CVE-2026-45700 |
unknown |
freerdp |
FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.26.0, FreeRDP's... |
| CVE-2026-44422 |
unknown |
freerdp |
FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.26.0, FreeRDP's... |
| CVE-2026-44421 |
unknown |
freerdp |
FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.26.0, a malicious... |
| CVE-2026-44420 |
unknown |
freerdp |
FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.26.0, a malicious... |
| CVE-2026-40528 |
unknown |
opensc |
OpenSC before 0.27.0, fixed in commit 0358817, contains a stack and heap buffer overrun... |
| CVE-2026-40510 |
unknown |
opensc |
OpenSC before 0.27.0-rc1, fixed in commit 3f24f0b, contains a stack buffer overflow... |
| CVE-2026-4408 |
unknown |
samba |
A flaw was found in Samba. A remote attacker can exploit a misconfiguration in Samba file... |
| CVE-2026-9759 |
unknown |
wireshark |
ROHC protocol dissector crash in Wireshark 4.6.0 to 4.6.5 and 4.4.0 to 4.4.15 allows denial of service |
| CVE-2026-44378 |
unknown |
botan |
Botan is a C++ cryptography library. Prior to 3.12.0, certain patterns of indefinite length... |
| CVE-2026-9674 |
unknown |
jenkins |
A cross-site request forgery (CSRF) vulnerability in Jenkins Multijob Plugin 662.vd2e0001f6b_b_d... |
| CVE-2026-48926 |
unknown |
jenkins |
Jenkins Job Import Plugin 143.v044a_2e819b_27 and earlier does not perform a permission check in... |
| CVE-2026-48922 |
unknown |
jenkins |
Jenkins Credentials Binding Plugin 720.v3f6decef43ea_ and earlier does not properly sanitize... |
| CVE-2026-48921 |
unknown |
jenkins |
Jenkins Pipeline: Groovy Libraries Plugin 797.v90ea_a_9b_e45a_0 and earlier does not prohibit... |
| CVE-2026-48920 |
unknown |
jenkins |
Jenkins Email Extension Plugin 1933.v45cec755423f and earlier allows inlining images as `base64`... |
| CVE-2026-48917 |
unknown |
jenkins |
Jenkins LDAP Plugin 807.v7d7de30930cf and earlier deserializes data from LDAP referrals without... |
| CVE-2026-48916 |
unknown |
jenkins |
Jenkins LDAP Plugin 807.v7d7de30930cf and earlier follows LDAP referrals. |
| CVE-2026-47104 |
unknown |
libusb |
libusb before version 1.0.30 contains a one-byte out-of-bounds read vulnerability in... |
| CVE-2026-2340 |
unknown |
samba |
A flaw was found in Samba’s vfs_worm module. The module is intended to provide write-once,... |
| CVE-2026-23679 |
unknown |
libusb |
libusb before version 1.0.30 contains a NULL pointer dereference vulnerability that allows... |
| CVE-2026-3012 |
unknown |
samba |
A flaw was found in Samba’s certificate auto-enrollment Group Policy handling. When certificate... |
| CVE-2026-49014 |
unknown |
gdal |
In GDAL 3.1.0 through 3.13.0, scanForGeometryContainers in the netCDF driver allows code... |
| CVE-2026-48710 |
unknown |
py3-starlette |
Starlette is a lightweight ASGI framework/toolkit. Prior to version 1.0.1, the HTTP `Host`... |
| CVE-2026-40033 |
unknown |
freerdp |
FreeRDP before 3.26.0 contains a heap-buffer-overflow vulnerability in gdi_CacheToSurface that... |
| CVE-2026-8376 |
unknown |
perl |
Perl versions through 5.43.10 have a heap buffer overflow when compiling regular expressions... |
| CVE-2026-48852 |
unknown |
putty |
PuTTY 0.71 before 0.84 has an assertion failure in ECDSA signature verification. |
| CVE-2026-48851 |
unknown |
putty |
PuTTY 0.77 before 0.84 uses a copy of the PuTTY icon as a trust indication for TELNET data but... |
| CVE-2026-48850 |
unknown |
putty |
PuTTY 0.72 before 0.84 has a double free in RSA KEX. |
| CVE-2026-9078 |
unknown |
firefox |
Firefox for iOS displayed specially crafted right-to-left (RTL) and internationalized domain... |
| CVE-2026-5950 |
unknown |
bind |
An unbounded resend loop vulnerability exists in the BIND 9 resolver state machine during... |
| CVE-2026-5946 |
unknown |
bind |
Multiple flaws have been identified in `named` related to the handling of DNS messages whose... |
| CVE-2026-3592 |
unknown |
bind |
BIND resolvers are vulnerable to an amplified resource consumption/exhaustion attack. If a... |
| CVE-2026-3039 |
unknown |
bind |
BIND servers that are configured to use TKEY-based authentication via GSS-API tokens are... |
| CVE-2026-29518 |
unknown |
rsync |
Rsync versions before 3.4.3 contain a time-of-check to time-of-use (TOCTOU) race condition in... |
| CVE-2026-44608 |
unknown |
unbound |
NLnet Labs Unbound 1.14.0 up to and including version 1.25.0 has a locking inconsistency... |
| CVE-2026-44390 |
unknown |
unbound |
NLnet Labs Unbound up to and including version 1.25.0 has a vulnerability when handling replies... |
| CVE-2026-42960 |
unknown |
unbound |
NLnet Labs Unbound up to and including version 1.25.0 is vulnerable to poisoning via promiscuous... |
| CVE-2026-42959 |
unknown |
unbound |
NLnet Labs Unbound up to and including version 1.25.0 has a denial of service vulnerability in... |
