Vulnerabilities
Recent vulnerabilities
Recent vulnerabilities from
Select from 70 available sources using the dropdown above.
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2026-48914 | Qemu-kvm: heap buffer overflow in virtio-blk scsi request handling | 2026-06-02T00:00:00.000Z | 2026-06-19T01:43:42.000Z |
| msrc_cve-2026-10275 | OpenSC pkcs11-tool Key Generation pkcs11-tool.c test_kpgen_certwrite buffer overflow | 2026-06-02T00:00:00.000Z | 2026-06-19T01:40:27.000Z |
| msrc_cve-2026-8376 | Perl versions through 5.43.10 have a heap buffer overflow when compiling regular expressions with a repeated fixed string on 32-bit builds | 2026-05-02T00:00:00.000Z | 2026-06-19T01:40:20.000Z |
| msrc_cve-2026-43966 | HTTP Response Splitting via Non-VCHAR Bytes in cow_http_struct_hd:escape_string/2 | 2026-06-02T00:00:00.000Z | 2026-06-19T01:01:53.000Z |
| msrc_cve-2026-9669 | bz2.BZ2Decompressor reuse after error can cause a stack buffer overflow | 2026-06-02T00:00:00.000Z | 2026-06-19T01:01:47.000Z |
| msrc_cve-2026-12087 | Socket versions before 2.041 for Perl have an out-of-bounds heap read | 2026-06-02T00:00:00.000Z | 2026-06-19T01:01:42.000Z |
| msrc_cve-2026-53689 | CVE-2026-53689 | 2026-06-02T00:00:00.000Z | 2026-06-19T01:01:36.000Z |
| msrc_cve-2026-42014 | Gnutls: fix use-after-free in gnutls_pkcs11_token_set_pin | 2026-06-02T00:00:00.000Z | 2026-06-19T01:01:29.000Z |
| msrc_cve-2026-44967 | opentelemetry-cpp: OTLP HTTP exporters read unbounded HTTP response | 2026-06-02T00:00:00.000Z | 2026-06-19T01:01:22.000Z |
| msrc_cve-2026-48855 | SFTP READLINK Leaks Absolute Backend Filesystem Path When Root Is Configured | 2026-06-02T00:00:00.000Z | 2026-06-18T14:43:01.000Z |
| msrc_cve-2026-49759 | Stack buffer overflow in SCTP error cause parsing in inet_drv allows remote VM crash | 2026-06-02T00:00:00.000Z | 2026-06-18T14:42:54.000Z |
| msrc_cve-2026-48860 | Distribution-over-TLS LAN allowlist silently bypassed due to sockname/peername confusion in inet_tls_dist | 2026-06-02T00:00:00.000Z | 2026-06-18T14:42:46.000Z |
| msrc_cve-2026-48856 | httpc leaks Authorization header to cross-origin redirect targets | 2026-06-02T00:00:00.000Z | 2026-06-18T14:42:39.000Z |
| msrc_cve-2026-48858 | ftp client PASV response IP not validated against control peer, enabling SSRF and FTP bounce attacks | 2026-06-02T00:00:00.000Z | 2026-06-18T14:42:32.000Z |
| msrc_cve-2026-49760 | Stack Buffer Overflow in ei_s_print_term at Very Large Integer | 2026-06-02T00:00:00.000Z | 2026-06-18T14:42:25.000Z |
| msrc_cve-2026-8643 | pip can extract console_scripts and gui_scripts outside installation directory | 2026-06-02T00:00:00.000Z | 2026-06-18T14:40:02.000Z |
| msrc_cve-2026-42502 | Invoking incorrect handling of HTML elements in foreign content in golang.org/x/net/html | 2026-05-02T00:00:00.000Z | 2026-06-18T14:39:54.000Z |
| msrc_cve-2026-0989 | Libxml2: unbounded relaxng include recursion leading to stack overflow | 2026-01-02T00:00:00.000Z | 2026-06-18T14:39:37.000Z |
| msrc_cve-2026-54130 | M365 Copilot Information Disclosure Vulnerability | 2026-06-09T07:00:00.000Z | 2026-06-18T07:00:00.000Z |
| msrc_cve-2026-48584 | Microsoft Azure Synapse Elevation of Privilege Vulnerability | 2026-06-09T07:00:00.000Z | 2026-06-18T07:00:00.000Z |
| msrc_cve-2026-48582 | Microsoft Exchange Online Elevation of Privilege Vulnerability | 2026-06-09T07:00:00.000Z | 2026-06-18T07:00:00.000Z |
| msrc_cve-2026-47647 | Dynamics 365 Elevation of Privilege Vulnerability | 2026-06-09T07:00:00.000Z | 2026-06-18T07:00:00.000Z |
| msrc_cve-2026-47646 | Dynamics 365 Customer Voice Spoofing Vulnerability | 2026-06-09T07:00:00.000Z | 2026-06-18T07:00:00.000Z |
| msrc_cve-2026-47645 | Microsoft 365 Copilot's Business Chat Elevation of Privilege Vulnerability | 2026-06-09T07:00:00.000Z | 2026-06-18T07:00:00.000Z |
| msrc_cve-2026-47633 | Microsoft Cost Management Information Disclosure Vulnerability | 2026-06-09T07:00:00.000Z | 2026-06-18T07:00:00.000Z |
| msrc_cve-2026-45480 | Azure Active Directory Elevation of Privilege Vulnerability | 2026-06-09T07:00:00.000Z | 2026-06-18T07:00:00.000Z |
| msrc_cve-2026-42895 | Microsoft Copilot Tampering Vulnerability | 2026-06-09T07:00:00.000Z | 2026-06-18T07:00:00.000Z |
| msrc_cve-2026-32208 | Microsoft Edge (Chromium-based) Spoofing Vulnerability | 2026-06-09T07:00:00.000Z | 2026-06-18T07:00:00.000Z |
| msrc_cve-2026-32174 | Azure Bot Service Elevation of Privilege Vulnerability | 2026-06-09T07:00:00.000Z | 2026-06-18T07:00:00.000Z |
| msrc_cve-2026-46293 | clk: microchip: mpfs-ccc: fix out of bounds access during output registration | 2026-06-02T00:00:00.000Z | 2026-06-18T01:50:27.000Z |