CVE-2026-48305 - Substance3D - Sampler versions 6.0.0 and earlier are affected by an out-of-bounds write vulnerabilit

CVE-2026-47910 - Dreamweaver Desktop versions 21.7 and earlier are affected by an Incorrect Authorization vulnerabili

CVE-2026-47909 - Dreamweaver Desktop versions 21.7 and earlier are affected by an Improper Input Validation vulnerabi

CVE-2026-47908 - Dreamweaver Desktop versions 21.7 and earlier are affected by an Access of Uninitialized Pointer vul

CVE-2026-47907 - Dreamweaver Desktop versions 21.7 and earlier are affected by an Improper Access Control vulnerabili

CVE-2026-47906 - Dreamweaver Desktop versions 21.7 and earlier are affected by a Dependency on Vulnerable Third-Party

CVE-2026-47106 - Ellucian Banner Self-Service before the April T2 release (2025-04-23) contains a stored cross-site s

CVE-2026-34710 - Substance3D - Sampler versions 6.0.0 and earlier are affected by an out-of-bounds write vulnerabilit

CVE-2026-34709 - Substance3D - Sampler versions 6.0.0 and earlier are affected by an out-of-bounds write vulnerabilit

CVE-2026-32856 - Ellucian Banner Self-Service before the April T2 release (2025-04-23) contains a reflected cross-sit

CVE-2026-11824 - SQLite before 3.53.2 contains a heap-based buffer overflow vulnerability in the FTS5 full-text searc

CVE-2026-11822 - SQLite before 3.53.2 contains memory corruption vulnerabilities in the FTS5 full-text search extensi

CVE-2026-8863 - Multiple Microsoft-sigend UEFI SHIM bootloaders are vulnerable to SecureBoot bypass. An attacker wit

CVE-2026-40639 - Dell Client Platform BIOS contains a Weak Encoding for Password vulnerability. An unauthenticated at

CVE-2026-39170 - SemCms 5.0 is vulnerable to Cross Site Request Forgery (CSRF) via crafted POST request to /admin/sem

CVE-2026-39169 - SEMCMS 5.0 is vulnerable to unauthorized access in SEMCMS_copy.php.

CVE-2026-36823 - Shenzhen Tenda Technology Co., Ltd Tenda W20E v15.11.0.6 was discovered to contain a buffer overflow

CVE-2026-36822 - Shenzhen Tenda Technology Co., Ltd Tenda W20E v15.11.0.6 was discovered to contain a buffer overflow

CVE-2026-36821 - Shenzhen Tenda Technology Co., Ltd Tenda W20E v15.11.0.6 was discovered to contain a buffer overflow

CVE-2026-36820 - Shenzhen Tenda Technology Co., Ltd Tenda W20E v15.11.0.6 was discovered to contain a buffer overflow

CVE-2026-36819 - Shenzhen Tenda Technology Co., Ltd Tenda W20E v15.11.0.6 was discovered to contain a buffer overflow

CVE-2026-36818 - Shenzhen Tenda Technology Co., Ltd Tenda W20E v15.11.0.6 was discovered to contain a buffer overflow

CVE-2026-36817 - Shenzhen Tenda Technology Co., Ltd Tenda W15E v15.11.0.10 was discovered to contain a buffer overflo

CVE-2026-36816 - Shenzhen Tenda Technology Co., Ltd Tenda W15E v15.11.0.10 was discovered to contain a buffer overflo

CVE-2026-36815 - Shenzhen Tenda Technology Co., Ltd Tenda W15E v15.11.0.10 was discovered to contain a buffer overflo

CVE-2026-36813 - Shenzhen Tenda Technology Co., Ltd Tenda W15E v15.11.0.10 was discovered to contain a buffer overflo

CVE-2026-36811 - Shenzhen Tenda Technology Co., Ltd Tenda W15E v15.11.0.10 was discovered to contain a buffer overflo

CVE-2026-36810 - Shenzhen Tenda Technology Co., Ltd Tenda W15E v15.11.0.10 was discovered to contain a buffer overflo

CVE-2026-36809 - Shenzhen Tenda Technology Co., Ltd Tenda W15E v15.11.0.10 was discovered to contain a buffer overflo

CVE-2026-36808 - Shenzhen Tenda Technology Co., Ltd Tenda W15E v15.11.0.10 was discovered to contain a buffer overflo

CVE-2026-36807 - Shenzhen Tenda Technology Co., Ltd Tenda W15E v15.11.0.10 was discovered to contain a buffer overflo

CVE-2026-36806 - Shenzhen Tenda Technology Co., Ltd Tenda W15E v15.11.0.10 was discovered to contain a buffer overflo

CVE-2026-36805 - Shenzhen Tenda Technology Co., Ltd Tenda G0 v15.11.0.5 was discovered to contain multiple buffer ove

CVE-2026-36803 - Shenzhen Tenda Technology Co., Ltd Tenda PW201A v1.0.5 was discovered to contain a buffer overflow i

CVE-2026-36802 - Shenzhen Tenda Technology Co., Ltd Tenda PW201A v1.0.5 was discovered to contain a buffer overflow i

CVE-2026-36801 - Shenzhen Tenda Technology Co., Ltd Tenda G0 v15.11.0.5 was discovered to contain a buffer overflow i

CVE-2026-36800 - Shenzhen Tenda Technology Co., Ltd Tenda G0 v15.11.0.5 was discovered to contain a buffer overflow i

CVE-2026-36799 - Shenzhen Tenda Technology Co., Ltd Tenda G0 v15.11.0.5 was discovered to contain a buffer overflow i

CVE-2026-36798 - Shenzhen Tenda Technology Co., Ltd Tenda G0 v15.11.0.5 was discovered to contain multiple stack over

CVE-2026-36797 - Shenzhen Tenda Technology Co., Ltd Tenda G0 v15.11.0.5 was discovered to contain a stack overflow in

CVE-2026-36796 - Shenzhen Tenda Technology Co., Ltd Tenda G0 v15.11.0.5 was discovered to contain a stack overflow in

CVE-2026-36794 - Shenzhen Tenda Technology Co., Ltd Tenda W3 Wireless Router v1.0.0.3(2204) was discovered to contain

CVE-2026-36793 - Shenzhen Tenda Technology Co., Ltd Tenda W3 Wireless Router v1.0.0.3(2204) was discovered to contain

CVE-2026-36792 - Shenzhen Tenda Technology Co., Ltd Tenda W3 Wireless Router v1.0.0.3(2204) was discovered to contain

CVE-2026-36791 - Shenzhen Tenda Technology Co., Ltd Tenda O3v3 v1.0.0.5 was discovered to contain a stack overflow in

CVE-2026-36784 - Shenzhen Tenda Technology Co., Ltd Tenda O3 Wireless Router v1.0.0.5(4180) was discovered to contain

CVE-2026-36783 - Shenzhen Tenda Technology Co., Ltd Tenda O3 Wireless Router v1.0.0.5(4180) was discovered to contain

CVE-2026-36779 - Shenzhen Tenda Technology Co., Ltd Tenda O3 Wireless Router v1.0.0.5(4180) was discovered to contain

CVE-2026-36778 - Shenzhen Tenda Technology Co., Ltd Tenda O3 Wireless Router v1.0.0.5(4180) was discovered to contain

CVE-2026-36777 - Shenzhen Tenda Technology Co., Ltd Tenda W3 Wireless Router v1.0.0.3(2204) was discovered to contain

CVE-2026-36773 - Shenzhen Tenda Technology Co., Ltd Tenda W3 Wireless Router v1.0.0.3(2204) was discovered to contain

CVE-2026-36772 - Shenzhen Tenda Technology Co., Ltd Tenda W3 Wireless Router v1.0.0.3(2204) was discovered to contain

CVE-2026-36771 - Shenzhen Tenda Technology Co., Ltd Tenda W3 Wireless Router v1.0.0.3(2204) was discovered to contain

CVE-2026-36770 - Shenzhen Tenda Technology Co., Ltd Tenda US_W3V1.0BR v1.0.0.3 was discovered to contain a stack over

CVE-2026-36728 - A markdown based cross-site scripting (XSS) vulnerability in the AI assistant chat function of Fasta

CVE-2026-36727 - An insecure authentication vulnerability in the /api/social-sign-in endpoint of bookcars v8.3 allows

CVE-2026-36726 - An arbitrary file deletion vulnerability in the /api/delete-temp-license/{file} endpoint of bookcars

CVE-2026-36725 - A markdown based cross-site scripting (XSS) vulnerability in the /system/notice/create endpoint of F

CVE-2026-36724 - An uncaught exception in the /application/job/update/{id} endpoint of FastapiAdmin v2.2.0 allows aut

CVE-2026-36723 - An unrestricted file rename vulnerability in the /api/create-user component of bookcars v8.3 allows

CVE-2026-36722 - An authenticated arbitrary file upload vulnerability in the /api/create-car-image component of bookc

CVE-2026-36721 - A lack of cryptographic signature verification in the validateAccessToken function of bookcars v8.3

CVE-2026-36720 - Insecure permissions in bookcars v8.3 allows authenticated attackers to escalate privileges from use

CVE-2026-36719 - An information disclosure vulnerability in the /api/v1/user/info endpoint of AgentChat v2.3.0 allows

CVE-2026-30141 - An issue was discovered in bitbank2 AnimatedGIF v2.2.0. A buffer overflow in the DecodeLZW function

CVE-2026-10045 - Shenzhen Kangda Xin Intelligent Network Technology Company's router, model DR300, version 2.1.2.121,

CVE-2025-55659 - A NULL pointer dereference in the ctts_box_write function (isomedia/box_code_base.c) of GPAC MP4Box

CVE-2025-55658 - GPAC MP4Box v2.4 was discovered to contain a floating point exception in the gf_opus_parse_packet_he

CVE-2025-55657 - A NULL pointer dereference in the gf_odf_vvc_cfg_write_bs function (odf/descriptors.c) of GPAC MP4Bo

CVE-2025-55651 - A NULL pointer dereference in the gf_isom_get_user_data_count function (isomedia/isom_read.c) of GPA

CVE-2025-52293 - A segmentation violaton in the gf_hevc_read_sps_bs_internal function (media_tools/av_parsers.c) of G

CVE-2025-52292 - A stack buffer overflow in the filein_process function (in_file.c) of GPAC MP4Box v2.4 allows attack

CVE-2023-43688 - An issue was discovered in Malwarebytes 4.x and 5.x (and Nebula 2020-10-21 and later). There is a He

CVE-2023-43686 - An issue was discovered in Malwarebytes 4.x and 5.x (and Nebula 2020-10-21 and later). A large numbe

CVE-2023-29146 - The utility functions used by Malwarebytes EDR 1.0.11 on Linux for calculating a cryptographic hash

CVE-2026-50636 - The RemoteControl API methods invite_participants and remind_participants pass a caller-supplied tok

CVE-2026-50635 - LimeSurvey constructs account password-reset links from the client-supplied HTTP Host header without

CVE-2026-50512 - Improper link resolution before file access ('link following') in Microsoft PC Manager allows an aut

CVE-2026-50511 - Improper link resolution before file access ('link following') in Microsoft PC Manager allows an aut

CVE-2026-48293 - InDesign Desktop versions 21.3, 20.5.3 and earlier are affected by an out-of-bounds write vulnerabil

CVE-2026-44275 - Dell/Alienware Purchased Apps, versions prior to 1.1.32.0, contain an Improper Link Resolution Befor

CVE-2026-41116 - Dell Inventory Collector Client, versions prior to 13.8.0, contain an Improper Link Resolution Befor

CVE-2026-34708 - InCopy versions 21.3, 20.5.3 and earlier are affected by a Stack-based Buffer Overflow vulnerability

CVE-2026-34707 - InCopy versions 21.3, 20.5.3 and earlier are affected by a Heap-based Buffer Overflow vulnerability

CVE-2026-34706 - InCopy versions 21.3, 20.5.3 and earlier are affected by an out-of-bounds write vulnerability that c

CVE-2026-34705 - InDesign Desktop versions 21.3, 20.5.3 and earlier are affected by an out-of-bounds read vulnerabili

CVE-2026-34704 - InDesign Desktop versions 21.3, 20.5.3 and earlier are affected by a NULL Pointer Dereference vulner

CVE-2026-34703 - InDesign Desktop versions 21.3, 20.5.3 and earlier are affected by a NULL Pointer Dereference vulner

CVE-2026-34702 - InDesign Desktop versions 21.3, 20.5.3 and earlier are affected by a Stack-based Buffer Overflow vul

CVE-2026-34701 - InDesign Desktop versions 21.3, 20.5.3 and earlier are affected by a Heap-based Buffer Overflow vuln

CVE-2026-34700 - InDesign Desktop versions 21.3, 20.5.3 and earlier are affected by an out-of-bounds write vulnerabil

CVE-2026-34699 - InDesign Desktop versions 21.3, 20.5.3 and earlier are affected by a Heap-based Buffer Overflow vuln

CVE-2026-34698 - InDesign Desktop versions 21.3, 20.5.3 and earlier are affected by a Heap-based Buffer Overflow vuln

CVE-2026-34697 - InDesign Desktop versions 21.3, 20.5.3 and earlier are affected by a Stack-based Buffer Overflow vul

CVE-2026-34696 - InDesign Desktop versions 21.3, 20.5.3 and earlier are affected by a Use After Free vulnerability th

CVE-2026-34695 - InDesign Desktop versions 21.3, 20.5.3 and earlier are affected by a Stack-based Buffer Overflow vul

CVE-2026-34694 - Adobe Experience Manager Forms JEE versions LTS SP1, 6.5.24.0 and earlier are affected by a stored C

CVE-2026-34693 - Adobe Experience Manager Forms JEE versions LTS SP1, 6.5.24.0 and earlier are affected by a reflecte

CVE-2026-34691 - Adobe Experience Manager Forms JEE versions LTS SP1, 6.5.24.0 and earlier are affected by a stored C

CVE-2026-28237 - Unrestricted resource allocation in AMD uProf may be exploitable to consume excessive system resourc

CVE-2026-0466 - Improper access control in AMD uProf may allow a local attacker with user privileges to write to the

CVE-2025-54509 - Improper access control for register interface in the input-output memory management unit (IOMMU) co

CVE-2026-9213 - A vulnerability in the affected NETGEAR gaming routers allows attackers with the ability to intercep

CVE-2026-9212 - Insufficient authentication and input validation in the listed NETGEAR models allow users connected

CVE-2026-9211 - An unauthenticated user on the local network can gain control of the router and make unauthorized ch

CVE-2026-9210 - Insufficient input validation vulnerability in the listed NETGEAR models allows authenticated admini

CVE-2026-9076 - Issue summary: When CMS password-based decryption (RFC 3211 / PWRI key unwrap) processes attacker-su

CVE-2026-7383 - Issue summary: A signed integer overflow when sizing the destination buffer for Unicode output in AS

CVE-2026-50508 - Exposure of sensitive information to an unauthorized actor in Windows NTLM allows an unauthorized at

CVE-2026-50507 - Protection mechanism failure in Windows BitLocker allows an unauthorized attacker to bypass a securi

CVE-2026-49959 - Hermes WebUI before version 0.51.311 contains a remote code execution vulnerability that allows auth

CVE-2026-49958 - Hermes WebUI before version 0.51.303 contains a time-of-check time-of-use (TOCTOU) race condition vu

CVE-2026-49957 - Hermes WebUI before version 0.51.296 contains a workspace boundary bypass vulnerability that allows

CVE-2026-49956 - Hermes WebUI before version 0.51.269 contains a profile isolation bypass vulnerability that allows a

CVE-2026-49955 - Hermes WebUI before version 0.51.270 contains a resource exhaustion vulnerability that allows unauth

CVE-2026-49848 - FreeSWITCH is a Software Defined Telecom Stack enabling the digital transformation from proprietary

CVE-2026-49847 - FreeSWITCH is a Software Defined Telecom Stack enabling the digital transformation from proprietary

CVE-2026-49843 - FreeSWITCH is a Software Defined Telecom Stack enabling the digital transformation from proprietary

CVE-2026-49842 - FreeSWITCH is a Software Defined Telecom Stack enabling the digital transformation from proprietary

CVE-2026-49841 - FreeSWITCH is a Software Defined Telecom Stack enabling the digital transformation from proprietary

CVE-2026-49840 - FreeSWITCH is a Software Defined Telecom Stack enabling the digital transformation from proprietary

CVE-2026-49475 - FreeSWITCH is a Software Defined Telecom Stack enabling the digital transformation from proprietary

CVE-2026-49472 - FreeSWITCH is a Software Defined Telecom Stack enabling the digital transformation from proprietary

CVE-2026-49161 - Improper access control in Microsoft PC Manager allows an authorized attacker to bypass a security f

CVE-2026-49160 - Uncontrolled resource consumption in HTTP/2 allows an unauthorized attacker to deny service over a n

CVE-2026-48583 - Use after free in Windows Kernel allows an authorized attacker to elevate privileges locally.

CVE-2026-48578 - Protection mechanism failure in Windows Secure Boot allows an authorized attacker to bypass a securi

CVE-2026-48576 - Protection mechanism failure in Windows Secure Boot allows an authorized attacker to bypass a securi

CVE-2026-48575 - Protection mechanism failure in Windows Secure Boot allows an authorized attacker to bypass a securi

CVE-2026-48574 - Heap-based buffer overflow in Windows Media allows an unauthorized attacker to execute code locally.

CVE-2026-48573 - Protection mechanism failure in Windows Secure Boot allows an authorized attacker to bypass a securi

CVE-2026-48570 - Protection mechanism failure in Windows Secure Boot allows an authorized attacker to bypass a securi

CVE-2026-48569 - Improper input validation in Visual Studio Code allows an unauthorized attacker to bypass a security

CVE-2026-48568 - Protection mechanism failure in Windows Secure Boot allows an authorized attacker to bypass a securi

CVE-2026-48566 - Out-of-bounds read in Windows DWM Core Library allows an authorized attacker to disclose information

CVE-2026-48565 - Untrusted search path in Windows Narrator Braille allows an authorized attacker to elevate privilege

CVE-2026-48563 - Heap-based buffer overflow in Remote Desktop Client allows an unauthorized attacker to execute code

CVE-2026-48562 - Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft Of

CVE-2026-48560 - Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft Of

CVE-2026-48304 - Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a stored Cros

CVE-2026-48301 - Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a stored Cros

CVE-2026-48300 - Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a stored Cros

CVE-2026-48299 - Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a stored Cros

CVE-2026-48297 - Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a stored Cros

CVE-2026-48289 - Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by an Improper I

CVE-2026-48288 - Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by an Improper I

CVE-2026-48280 - Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a DOM-based C

CVE-2026-48271 - Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a DOM-based C

CVE-2026-48268 - Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a DOM-based C

CVE-2026-48266 - Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a DOM-based C

CVE-2026-48265 - Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a DOM-based C

CVE-2026-48264 - Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a DOM-based C

CVE-2026-48258 - Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a DOM-based C

CVE-2026-48256 - Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a DOM-based C

CVE-2026-48251 - Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a DOM-based C

CVE-2026-48250 - Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a DOM-based C

CVE-2026-47993 - Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a DOM-based C

CVE-2026-47991 - Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by an Improper R

CVE-2026-47990 - Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a stored Cros

CVE-2026-47989 - Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a DOM-based C

CVE-2026-47987 - Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a DOM-based C

CVE-2026-47986 - Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a DOM-based C

CVE-2026-47985 - Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a DOM-based C

CVE-2026-47983 - Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a DOM-based C

CVE-2026-47982 - Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a DOM-based C

CVE-2026-47981 - Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a stored Cros

CVE-2026-47980 - Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a stored Cros

CVE-2026-47978 - Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a stored Cros

CVE-2026-47977 - Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a stored Cros

CVE-2026-47975 - Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a stored Cros

CVE-2026-47974 - Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a stored Cros

CVE-2026-47973 - Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a stored Cros

CVE-2026-47972 - Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a stored Cros

CVE-2026-47970 - Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a stored Cros

CVE-2026-47966 - Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a stored Cros

CVE-2026-47962 - Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a stored Cros

CVE-2026-47958 - Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a stored Cros

CVE-2026-47957 - Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a stored Cros

CVE-2026-47956 - Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a stored Cros

CVE-2026-47954 - Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a stored Cros

CVE-2026-47953 - Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a stored Cros

CVE-2026-47951 - Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a stored Cros

CVE-2026-47950 - Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a stored Cros

CVE-2026-47949 - Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a stored Cros

CVE-2026-47948 - Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a stored Cros

CVE-2026-47947 - Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a DOM-based C

CVE-2026-47946 - Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a DOM-based C

CVE-2026-47945 - Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a stored Cros

CVE-2026-47944 - Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a stored Cros

CVE-2026-47943 - Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a stored Cros

CVE-2026-47942 - Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a stored Cros

CVE-2026-47941 - Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a stored Cros

CVE-2026-47939 - Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a stored Cros

CVE-2026-47936 - Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a stored Cros

CVE-2026-47935 - Adobe Experience Manager versions 6.5.24, LTS SP1, 2026.04 and earlier are affected by a DOM-based C

CVE-2026-47656 - Protection mechanism failure in Windows Boot Manager allows an authorized attacker to bypass a secur

CVE-2026-47654 - Heap-based buffer overflow in Remote Desktop Client allows an unauthorized attacker to execute code

CVE-2026-47653 - Heap-based buffer overflow in Remote Desktop Client allows an unauthorized attacker to execute code

CVE-2026-47652 - Out-of-bounds read in Windows Hyper-V allows an unauthorized attacker to execute code locally.

CVE-2026-47648 - Untrusted search path in Windows Storage allows an authorized attacker to elevate privileges locally

CVE-2026-47643 - External control of file name or path in Azure Stack Edge allows an unauthorized attacker to execute

CVE-2026-47641 - Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft Of

CVE-2026-47640 - Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft Of

CVE-2026-47639 - Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft Of

CVE-2026-47638 - Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft Of

CVE-2026-47637 - Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft Of

CVE-2026-47636 - Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft Of

CVE-2026-47635 - Access of resource using incompatible type ('type confusion') in Microsoft Office allows an unauthor

CVE-2026-47634 - Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft Of

CVE-2026-47631 - Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft Ex

CVE-2026-47298 - Improper authorization in Microsoft Office SharePoint allows an authorized attacker to execute code

CVE-2026-47293 - Use after free in Microsoft Office Click-To-Run allows an authorized attacker to elevate privileges

CVE-2026-47292 - Inclusion of functionality from untrusted control sphere in Visual Studio Code allows an unauthorize

CVE-2026-47291 - Integer overflow or wraparound in Windows HTTP.sys allows an unauthorized attacker to execute code o

CVE-2026-47289 - Heap-based buffer overflow in Remote Desktop Client allows an unauthorized attacker to execute code

CVE-2026-47288 - Integer overflow or wraparound in Windows Kerberos allows an authorized attacker to execute code ove

CVE-2026-47287 - Relative path traversal in Visual Studio Code allows an unauthorized attacker to perform tampering o

CVE-2026-47284 - Exposure of sensitive information to an unauthorized actor in Visual Studio Code allows an unauthori

CVE-2026-47281 - Improper input validation in Visual Studio Code allows an unauthorized attacker to elevate privilege

CVE-2026-46492 - md-fileserver allows for local viewing of markdown files in a browser. Prior to version 1.10.3, a cr

CVE-2026-45771 - FreeSWITCH is a Software Defined Telecom Stack enabling the digital transformation from proprietary

CVE-2026-45658 - Protection mechanism failure in Windows BitLocker allows an unauthorized attacker to bypass a securi

CVE-2026-45657 - Use after free in Windows Kernel allows an unauthorized attacker to execute code over a network.

CVE-2026-45656 - Protection mechanism failure in Windows UEFI allows an authorized attacker to bypass a security feat

CVE-2026-45655 - Protection mechanism failure in Windows BitLocker allows an unauthorized attacker to bypass a securi

CVE-2026-45654 - Protection mechanism failure in Windows Secure Boot allows an authorized attacker to bypass a securi

CVE-2026-45653 - Use after free in Windows Kernel allows an authorized attacker to elevate privileges locally.

CVE-2026-45650 - User interface (ui) misrepresentation of critical information in Microsoft Bing allows an unauthoriz

CVE-2026-45649 - Improper access control in Office for Android allows an unauthorized attacker to perform spoofing lo

CVE-2026-45648 - Stack-based buffer overflow in Active Directory Domain Services allows an authorized attacker to exe

CVE-2026-45647 - Time-of-check time-of-use (toctou) race condition in Microsoft Defender for Endpoint allows an autho

CVE-2026-45645 - Heap-based buffer overflow in Microsoft Office allows an unauthorized attacker to execute code local

CVE-2026-45644 - Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft Li

CVE-2026-45643 - Untrusted pointer dereference in Microsoft Office Word allows an unauthorized attacker to execute co

CVE-2026-45642 - Improper input validation in Microsoft Azure Attestation service and Device Health Attestation Servi

CVE-2026-45641 - Out-of-bounds read in Windows Hyper-V allows an unauthorized attacker to execute code locally.

CVE-2026-45640 - Use after free in Windows Bluetooth Port Driver allows an authorized attacker to elevate privileges

CVE-2026-45639 - Out-of-bounds read in Windows RDP allows an unauthorized attacker to disclose information over a net

CVE-2026-45638 - Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to ele

CVE-2026-45637 - Use after free in Windows DWM Core Library allows an authorized attacker to elevate privileges local

CVE-2026-45636 - Heap-based buffer overflow in Windows NTFS allows an unauthorized attacker to execute code locally.

CVE-2026-45635 - Use after free in Universal Plug and Play (upnp.dll) allows an unauthorized attacker to execute code

CVE-2026-45634 - Out-of-bounds read in Windows DHCP Server allows an authorized attacker to disclose information loca

CVE-2026-45608 - Out-of-bounds read in Windows DHCP Server allows an authorized attacker to disclose information loca

CVE-2026-45607 - Out-of-bounds read in Windows Hyper-V allows an unauthorized attacker to execute code locally.

CVE-2026-45606 - Out-of-bounds read in Microsoft UxTheme Library (uxtheme.dll) allows an authorized attacker to deny

CVE-2026-45605 - Use after free in Windows Bluetooth Service allows an authorized attacker to elevate privileges loca

CVE-2026-45604 - Out-of-bounds read in Windows Application Identity (AppID) Subsystem allows an authorized attacker t

CVE-2026-45603 - Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to ele

CVE-2026-45602 - No cwe for this issue in Windows DHCP Server allows an unauthorized attacker to perform tampering ov