CVE.report
CVE.report is the most up-to-date database of common vulnerabilities and exposures. Information is pulled in from several sources and processed in to a mobile friendly, easy to use page. Use the site to quickly check for vulnerabilities in products such as operating systems, applications, hardware, networks, databases, browsers, e-mail clients and more.
CVEs provide a unique and common naming scheme for publicly known cyber security vulnerabilities in order to quickly identify and share these vulnerabilities. You can use the search below to look for vulnerabilities based on product, vendor, or common tags
The form you will see after following this link allows you to fill out the various variables in the CVSS scoring system and receive the corresponding score. The description of each of the variables is also included for additional information.
cve.report now provides a free read-only JSON API for CVE details. Each record combines the CVE Program JSON record, NVD enrichment, KEV, and EPSS when available.
Recent CVEs
| CVE | Description | Updated |
|---|---|---|
| CVE-2026-33846 json | A heap buffer overflow vulnerability exists in the DTLS handshake fragment reassembly logic of GnuTLS. The issue arises in me... | Mon, 04 May 2026 06:16:12 |
| CVE-2026-7750 json | A vulnerability was detected in Totolink N300RH 3.2.4-B20220812. This vulnerability affects the function setMacFilterRules of... | Mon, 04 May 2026 06:16:12 |
| CVE-2026-7749 json | A security vulnerability has been detected in Totolink N300RH 3.2.4-B20220812. This affects the function setWanConfig of the ... | Mon, 04 May 2026 06:16:12 |
| CVE-2026-7748 json | A weakness has been identified in Totolink N300RH 3.2.4-B20220812. Affected by this issue is the function setUpgradeFW of the... | Mon, 04 May 2026 06:16:12 |
| CVE-2026-31787 json | In the Linux kernel, the following vulnerability has been resolved: xen/privcmd: fix double free via VMA splitting privcmd_... | Mon, 04 May 2026 05:16:11 |
| CVE-2026-31786 json | In the Linux kernel, the following vulnerability has been resolved: Buffer overflow in drivers/xen/sys-hypervisor.c The bui... | Mon, 04 May 2026 05:16:11 |
| CVE-2026-7747 json | A security flaw has been discovered in Totolink N300RH 3.2.4-B20220812. Affected by this vulnerability is the function logina... | Mon, 04 May 2026 05:16:11 |
| CVE-2026-7746 json | A vulnerability was identified in SourceCodester Web-based Pharmacy Product Management System 1.0. Affected is an unknown fun... | Mon, 04 May 2026 05:16:11 |
| CVE-2026-7745 json | A vulnerability was determined in CodeAstro Online Classroom 1.0. This impacts an unknown function of the file /OnlineClassro... | Mon, 04 May 2026 05:16:11 |
| CVE-2025-14320 json | Improper neutralization of input during web page generation ('cross-site scripting') vulnerability in Tegsoft Management and ... | Mon, 04 May 2026 05:16:11 |
| CVE-2026-20450 json | In Modem, there is a possible system crash due to incorrect error handling. This could lead to remote denial of service, if a... | Mon, 04 May 2026 03:16:07 |
| CVE-2026-20449 json | In Modem, there is a possible system crash due to a heap buffer overflow. This could lead to remote denial of service, if a U... | Mon, 04 May 2026 03:16:07 |
| CVE-2026-20448 json | In geniezone, there is a possible escalation of privilege due to a missing permission check. This could lead to local escalat... | Mon, 04 May 2026 03:16:07 |
| CVE-2026-20447 json | In geniezone, there is a possible escalation of privilege due to a missing bounds check. This could lead to local escalation ... | Mon, 04 May 2026 03:16:07 |
| CVE-2026-39087 json | ntfy before 2.22.0 allows SSRF because of an unanchored regular expression. | Mon, 04 May 2026 02:16:05 |
| CVE-2026-7669 json | A vulnerability was detected in sgl-project SGLang up to 0.5.9. Impacted is the function get_tokenizer of the file python/sgl... | Mon, 04 May 2026 02:16:05 |
| CVE-2026-7163 json | A vulnerability in the assisted-service REST API, an optional Assisted Installer (assisted-service) component in the Multiclu... | Mon, 04 May 2026 02:16:05 |
| CVE-2026-7724 json | A vulnerability has been found in PrefectHQ prefect up to 3.6.28.dev1. Affected by this vulnerability is the function validat... | Sun, 03 May 2026 23:31:01 |
| CVE-2026-7723 json | A flaw has been found in PrefectHQ prefect up to 3.6.13. Affected is an unknown function of the file /api/events/in of the co... | Sun, 03 May 2026 23:31:01 |
| CVE-2026-7722 json | A vulnerability was detected in PrefectHQ prefect up to 3.6.21. This impacts the function endswith of the file /api/health of... | Sun, 03 May 2026 23:31:01 |
| CVE-2026-7721 json | A security vulnerability has been detected in Totolink WA300 5.2cu.7112_B20190227. This affects the function NTPSyncWithHost ... | Sun, 03 May 2026 23:31:01 |
| CVE-2026-7720 json | A weakness has been identified in Totolink WA300 5.2cu.7112_B20190227. The impacted element is the function setLanguageCfg of... | Sun, 03 May 2026 22:29:55 |
| CVE-2026-7719 json | A security flaw has been discovered in Totolink WA300 5.2cu.7112_B20190227. The affected element is the function loginauth of... | Sun, 03 May 2026 22:29:55 |
| CVE-2026-7718 json | A vulnerability was identified in Totolink WA300 5.2cu.7112_B20190227. Impacted is the function setWebWlanIdx of the file /cg... | Sun, 03 May 2026 22:29:55 |
| CVE-2026-4878 json | A flaw was found in libcap. A local unprivileged user can exploit a Time-of-check-to-time-of-use (TOCTOU) race condition in t... | Sun, 03 May 2026 22:29:55 |
| CVE-2026-42370 json | A stack overflow vulnerability exists in the WebCam Server Login functionality of GeoVision GV-VMS V20 20.0.2. A specially cr... | Sun, 03 May 2026 21:28:58 |
| CVE-2026-42369 json | GV-VMS V20 is a Video Monitoring Software used to gather the feeds of many surveillance cameras and manage other security dev... | Sun, 03 May 2026 21:28:58 |
| CVE-2026-42368 json | A privilege escalation vulnerability exists in the Web Interface functionality of GeoVision LPC2011/LPC2211 1.10. A specially... | Sun, 03 May 2026 21:28:58 |
| CVE-2026-42367 json | A privilege escalation vulnerability exists in the Web Interface / ssi.cgi functionality of GeoVision LPC2011/LPC2211 1.10. A... | Sun, 03 May 2026 21:28:58 |
| CVE-2026-42366 json | Multiple reflected cross-site scripting (xss) vulnerabilities exist in the Web Interface / ssi.cgi functionality of GeoVision... | Sun, 03 May 2026 21:28:58 |
| CVE-2026-42365 json | A guessable session cookie vulnerability exists in the Web Interface functionality of GeoVision LPC2011/LPC2211 1.10. A speci... | Sun, 03 May 2026 21:28:58 |
| CVE-2026-42364 json | An os command injection vulnerability exists in the DdnsSetting.cgi functionality of GeoVision LPC2011/LPC2211 1.10. A specia... | Sun, 03 May 2026 21:28:58 |
| CVE-2026-7717 json | A vulnerability was determined in Totolink WA300 5.2cu.7112_B20190227. This issue affects the function UploadCustomModule of ... | Sun, 03 May 2026 21:28:58 |
| CVE-2026-7716 json | A vulnerability was found in code-projects Gym Management System In PHP and Windows NT 1.0. This vulnerability affects unknow... | Sun, 03 May 2026 21:28:58 |
| CVE-2026-7715 json | A vulnerability has been found in ravenwits mcp-server-arangodb up to 0.4.7. This affects the function arango_backup of the f... | Sun, 03 May 2026 21:28:58 |
| CVE-2026-7714 json | A flaw has been found in crocodilestick Calibre-Web-Automated up to 4.0.6. Affected by this issue is some unknown functionali... | Sun, 03 May 2026 21:28:58 |
| CVE-2026-7372 json | A stack overflow vulnerability exists in the WebCam Server Login functionality of GeoVision GV-VMS V20 20.0.2. A specially cr... | Sun, 03 May 2026 21:28:58 |
| CVE-2026-7371 json | Multiple reflected cross-site scripting (xss) vulnerabilities exist in the Web Interface / ssi.cgi functionality of GeoVision... | Sun, 03 May 2026 21:28:58 |
| CVE-2026-7161 json | An insufficient encryption vulnerability exists in the Device Authentication functionality of GeoVision GV-IP Device Utility ... | Sun, 03 May 2026 21:28:58 |
| CVE-2025-54236 json | Adobe Commerce versions 2.4.9-alpha2, 2.4.8-p2, 2.4.7-p7, 2.4.6-p12, 2.4.5-p14, 2.4.4-p15 and earlier are affected by an Impr... | Sun, 03 May 2026 21:13:40 |
| CVE-2026-7713 json | A vulnerability was detected in crocodilestick Calibre-Web-Automated up to 4.0.6. Affected by this vulnerability is the funct... | Sun, 03 May 2026 20:28:14 |
| CVE-2026-7712 json | A security vulnerability has been detected in MindsDB up to 26.01. Affected is the function pickle.loads of the component Pic... | Sun, 03 May 2026 20:28:14 |
| CVE-2026-7711 json | A weakness has been identified in MindsDB up to 26.01. This impacts the function exec of the file mindsdb/integrations/handle... | Sun, 03 May 2026 20:28:14 |
| CVE-2026-7710 json | A security flaw has been discovered in YunaiV yudao-cloud up to 3.8.0. This affects the function doFilterInternal of the file... | Sun, 03 May 2026 20:28:14 |
| CVE-2026-6948 json | Velociraptor versions prior to 0.76.4 contain a resource exhaustion vulnerability in the server's agent control channel. T... | Sun, 03 May 2026 20:28:14 |
| CVE-2026-7709 json | A vulnerability was identified in janeczku Calibre-Web up to 0.6.26. The impacted element is the function generate_auth_token... | Sun, 03 May 2026 19:26:52 |
| CVE-2026-7708 json | A vulnerability was determined in Open5GS up to 2.7.7. The affected element is the function ogs_dbi_subscription_data in the ... | Sun, 03 May 2026 19:26:52 |
| CVE-2026-7707 json | A vulnerability was found in Open5GS up to 2.7.7. Impacted is the function udr_nudr_dr_handle_subscription_context of the fil... | Sun, 03 May 2026 19:26:52 |
| CVE-2026-7706 json | A vulnerability has been found in Open5GS up to 2.7.7. This issue affects the function gmm_handle_service_request of the file... | Sun, 03 May 2026 19:26:52 |
| CVE-2026-7705 json | A flaw has been found in JD Cloud JDCOS 4.5.1.r4518. This vulnerability affects the function set_iptv_info of the file /jdcap... | Sun, 03 May 2026 19:26:52 |
| CVE-2026-4426 json | A flaw was found in libarchive. An Undefined Behavior vulnerability exists in the zisofs decompression logic, caused by impro... | Sun, 03 May 2026 17:25:22 |
| CVE-2026-33845 json | A flaw in GnuTLS DTLS handshake parsing allows malformed fragments with zero length and non-zero offset, leading to an intege... | Sun, 03 May 2026 16:24:14 |
| CVE-2026-3833 json | A flaw was found in gnutls. This vulnerability occurs because gnutls performs case-sensitive comparisons of `nameConstraints`... | Sun, 03 May 2026 16:24:14 |
| CVE-2026-3832 json | A flaw was found in gnutls. A remote attacker could exploit this vulnerability by presenting a specially crafted Online Certi... | Sun, 03 May 2026 16:24:14 |
| CVE-2026-7704 json | A vulnerability has been found in AV Stumpfl Pixera Two Media Server up to 25.1 R2. The affected element is an unknown functi... | Sun, 03 May 2026 13:20:43 |
| CVE-2026-7703 json | A flaw has been found in AV Stumpfl Pixera Two Media Server up to 25.2 R2. Impacted is an unknown function of the component W... | Sun, 03 May 2026 13:20:43 |
| CVE-2026-7702 json | A vulnerability was detected in toeverything AFFiNE up to 0.26.3. This issue affects the function allowDocPreview of the file... | Sun, 03 May 2026 12:20:41 |
| CVE-2026-7701 json | A security vulnerability has been detected in Telegram Desktop up to 6.7.5. This vulnerability affects the function RequestBu... | Sun, 03 May 2026 12:20:41 |
| CVE-2026-7700 json | A weakness has been identified in langflow-ai langflow up to 1.8.4. This affects the function eval of the file src/lfx/src/lf... | Sun, 03 May 2026 11:20:39 |
| CVE-2026-7699 json | A security flaw has been discovered in Dromara MaxKey up to 3.5.13. Affected by this issue is the function StrUtils.checkSqlI... | Sun, 03 May 2026 11:20:39 |
| CVE-2026-5745 json | A flaw was found in libarchive. A NULL pointer dereference vulnerability exists in the ACL parsing logic, specifically within... | Sun, 03 May 2026 11:20:39 |
| CVE-2026-7698 json | A vulnerability was identified in Tiandy Easy7 Integrated Management Platform 7.17.0. Affected by this vulnerability is an un... | Sun, 03 May 2026 10:20:38 |
| CVE-2026-7697 json | A vulnerability was determined in AMTT Hotel Broadband Operation System 1.0. Affected is an unknown function of the file /man... | Sun, 03 May 2026 10:20:38 |
| CVE-2026-1584 json | A flaw was found in gnutls. A remote, unauthenticated attacker can exploit this vulnerability by sending a specially crafted ... | Sun, 03 May 2026 10:20:38 |
| CVE-2026-7696 json | A vulnerability was found in Acrel Electrical EEMS Enterprise Power Operation and Maintenance Cloud Platform 1.3.0. This impa... | Sun, 03 May 2026 09:20:36 |
| CVE-2026-7695 json | A vulnerability has been found in Acrel Electrical EEMS Enterprise Power Operation and Maintenance Cloud Platform 1.3.0. This... | Sun, 03 May 2026 09:20:36 |
| CVE-2026-7694 json | A flaw has been found in Acrel Electrical ECEMS Enterprise Microgrid Energy Efficiency Management System 1.3.0. The impacted ... | Sun, 03 May 2026 08:20:34 |
| CVE-2026-7692 json | A vulnerability was detected in Wavlink WL-WN570HA1 R70HA1 V1410_221110. The affected element is the function ping_ddns of th... | Sun, 03 May 2026 07:20:14 |
| CVE-2026-7691 json | A security vulnerability has been detected in Wavlink WL-WN570HA1 R70HA1 V1410_221110. Impacted is the function set_sys_cmd o... | Sun, 03 May 2026 07:20:14 |
| CVE-2026-7690 json | A weakness has been identified in Wavlink WL-WN570HA1 R70HA1 V1410_221110. This issue affects the function set_sys_adm of the... | Sun, 03 May 2026 06:19:14 |
| CVE-2026-7689 json | A security flaw has been discovered in Dolibarr ERP CRM up to 23.0.2. This vulnerability affects the function dol_verifyHash ... | Sun, 03 May 2026 06:19:14 |
| CVE-2026-7688 json | A vulnerability was identified in Dolibarr ERP CRM up to 23.0.2. This affects the function _checkValForAPI of the file htdocs... | Sun, 03 May 2026 06:19:14 |
| CVE-2025-3359 json | A flaw was found in GNUPlot. A segmentation fault via IO_str_init_static_internal may jeopardize the environment. | Sun, 03 May 2026 06:19:14 |
| CVE-2026-7687 json | A vulnerability was determined in langflow-ai langflow up to 1.8.4. Affected by this issue is the function CodeParser.parse_c... | Sun, 03 May 2026 05:18:14 |
| CVE-2026-7686 json | A vulnerability was found in eyeo Adblock Plus up to 4.36.2 on Chrome. Affected by this vulnerability is the function postMes... | Sun, 03 May 2026 04:17:11 |
| CVE-2026-43057 json | In the Linux kernel, the following vulnerability has been resolved: net: correctly handle tunneled traffic on IPV6_CSUM GSO ... | Sun, 03 May 2026 03:31:17 |
| CVE-2026-43056 json | In the Linux kernel, the following vulnerability has been resolved: net: mana: fix use-after-free in add_adev() error path ... | Sun, 03 May 2026 03:31:17 |
| CVE-2026-43055 json | In the Linux kernel, the following vulnerability has been resolved: scsi: target: file: Use kzalloc_flex for aio_cmd The ta... | Sun, 03 May 2026 03:31:17 |
| CVE-2026-43051 json | In the Linux kernel, the following vulnerability has been resolved: HID: wacom: fix out-of-bounds read in wacom_intuos_bt_ir... | Sun, 03 May 2026 03:31:17 |
| CVE-2026-7685 json | A vulnerability was detected in Edimax BR-6208AC up to 1.02. Affected is an unknown function of the file /goform/setWAN. Perf... | Sun, 03 May 2026 03:31:17 |
| CVE-2026-7684 json | A security vulnerability has been detected in Edimax BR-6428nC up to 1.16. This impacts an unknown function of the file /gofo... | Sun, 03 May 2026 03:31:17 |
| CVE-2026-7683 json | A weakness has been identified in Edimax BR-6428nC up to 1.16. This affects an unknown function of the file /goform/setWAN of... | Sun, 03 May 2026 03:31:17 |
| CVE-2026-7682 json | A security flaw has been discovered in Edimax BR-6208AC 1.02. The impacted element is the function setWAN of the file /goform... | Sun, 03 May 2026 03:31:17 |
| CVE-2026-5337 json | During the analysis, it was identified that authenticated attackers with Subscriber-level access or higher are able to perfor... | Sun, 03 May 2026 03:31:17 |
| CVE-2026-43048 json | In the Linux kernel, the following vulnerability has been resolved: HID: core: Mitigate potential OOB by removing bogus mems... | Sun, 03 May 2026 03:31:16 |
| CVE-2026-43047 json | In the Linux kernel, the following vulnerability has been resolved: HID: multitouch: Check to ensure report responses match ... | Sun, 03 May 2026 03:31:16 |
| CVE-2026-43044 json | In the Linux kernel, the following vulnerability has been resolved: crypto: caam - fix DMA corruption on long hmac keys Whe... | Sun, 03 May 2026 03:31:16 |
| CVE-2026-43042 json | In the Linux kernel, the following vulnerability has been resolved: mpls: add seqcount to protect the platform_label{,s} pai... | Sun, 03 May 2026 03:31:16 |
| CVE-2026-43039 json | In the Linux kernel, the following vulnerability has been resolved: net: ti: icssg-prueth: fix missing data copy and wrong r... | Sun, 03 May 2026 03:31:16 |
| CVE-2026-43038 json | In the Linux kernel, the following vulnerability has been resolved: ipv6: icmp: clear skb2->cb[] in ip6_err_gen_icmpv6_unrea... | Sun, 03 May 2026 03:31:16 |
| CVE-2026-43037 json | In the Linux kernel, the following vulnerability has been resolved: ip6_tunnel: clear skb2->cb[] in ip4ip6_err() Oskar Kjos... | Sun, 03 May 2026 03:31:16 |
| CVE-2026-43033 json | In the Linux kernel, the following vulnerability has been resolved: crypto: authencesn - Do not place hiseq at end of dst fo... | Sun, 03 May 2026 03:31:16 |
| CVE-2026-43031 json | In the Linux kernel, the following vulnerability has been resolved: net: xilinx: axienet: Fix BQL accounting for multi-BD TX... | Sun, 03 May 2026 03:31:16 |
| CVE-2026-43030 json | In the Linux kernel, the following vulnerability has been resolved: bpf: Fix regsafe() for pointers to packet In case rold-... | Sun, 03 May 2026 03:31:16 |
| CVE-2026-43029 json | In the Linux kernel, the following vulnerability has been resolved: mptcp: fix soft lockup in mptcp_recvmsg() syzbot report... | Sun, 03 May 2026 03:31:16 |
| CVE-2026-43028 json | In the Linux kernel, the following vulnerability has been resolved: netfilter: x_tables: ensure names are nul-terminated Re... | Sun, 03 May 2026 03:31:16 |
| CVE-2026-43025 json | In the Linux kernel, the following vulnerability has been resolved: netfilter: ctnetlink: ignore explicit helper on new expe... | Sun, 03 May 2026 03:31:16 |
| CVE-2026-43023 json | In the Linux kernel, the following vulnerability has been resolved: Bluetooth: SCO: fix race conditions in sco_sock_connect(... | Sun, 03 May 2026 03:31:16 |
| CVE-2026-43019 json | In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_conn: fix potential UAF in set_cig_params... | Sun, 03 May 2026 03:31:16 |
| CVE-2026-43018 json | In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_event: fix potential UAF in hci_le_remote... | Sun, 03 May 2026 03:31:16 |