NVD Vulnerabilities

Severity Distribution

Publication Trend

Vulnerability Database

CVE ID	Description	Published	Base Score	Attack Vector	Severity	Actions
CVE-2026-39883	OpenTelemetry-Go is the Go implementation of OpenTelemetry. From 1.15.0 to 1.42.0, the fix for CVE-2026-24051 changed the Darwin ioreg command to use ...	2026-04-08	7.0	LOCAL	HIGH	NVD
CVE-2026-39882	OpenTelemetry-Go is the Go implementation of OpenTelemetry. Prior to 1.43.0, the otlp HTTP exporters (traces/metrics/logs) read the full HTTP response...	2026-04-08	5.3	ADJACENT_NETWORK	MEDIUM	NVD
CVE-2026-39881	Vim is an open source, command line text editor. Prior to 9.2.0316, a command injection vulnerability in Vim's netbeans interface allows a malicious n...	2026-04-08	5.0	LOCAL	MEDIUM	NVD
CVE-2026-39860	Nix is a package manager for Linux and other Unix systems. A bug in the fix for CVE-2024-27297 allowed for arbitrary overwrites of files writable by t...	2026-04-08	9.0	LOCAL	CRITICAL	NVD
CVE-2026-39844	NiceGUI is a Python-based UI framework. Prior to 3.10.0, Since PurePosixPath only recognizes forward slashes (/) as path separators, an attacker can b...	2026-04-08	5.9	NETWORK	MEDIUM	NVD
CVE-2026-39429	kcp is a Kubernetes-like control plane for form-factors and use-cases beyond Kubernetes and container workloads. Prior to 0.30.3 and 0.29.3, the cache...	2026-04-08	8.2	NETWORK	HIGH	NVD
CVE-2026-39416	AIL framework is an open-source platform to collect, crawl, process and analyse unstructured data. Prior to 6.8, a stored cross-site scripting (XSS) v...	2026-04-08	6.1	NETWORK	MEDIUM	NVD
CVE-2026-39415	Frappe Learning Management System (LMS) is a learning system that helps users structure their content. Prior to 2.46.0, a vulnerability has been ident...	2026-04-08	4.3	NETWORK	MEDIUM	NVD
CVE-2026-39414	MinIO is a high-performance object storage system. From RELEASE.2018-08-18T03-49-57Z to before RELEASE.2025-12-20T04-58-37Z, MinIO's S3 Select feature...	2026-04-08	6.5	NETWORK	MEDIUM	NVD
CVE-2026-5802	A vulnerability was identified in idachev mcp-javadc up to 1.2.4. Impacted is an unknown function of the component HTTP Interface. Such manipulation o...	2026-04-08	7.3	NETWORK	HIGH	NVD
CVE-2026-39880	Remnawave Backend is the backend for the Remnawave proxy and user management solution. Prior to 2.7.5, a glitch in the HWID device registration logic ...	2026-04-08	5.0	NETWORK	MEDIUM	NVD
CVE-2026-39864	Kamailio is an open source implementation of a SIP Signaling Server. Prior to 6.0.5 and 5.8.7, an out-of-bounds read in the auth module of Kamailio (f...	2026-04-08	4.4	NETWORK	MEDIUM	NVD
CVE-2026-39863	Kamailio is an open source implementation of a SIP Signaling Server. Prior to 6.1.1, 6.0.6, and 5.8.8, an out-of-bounds access in the core of Kamailio...	2026-04-08	7.5	NETWORK	HIGH	NVD
CVE-2026-39862	Tophat is a mobile applications testing harness. Prior to 2.5.1, Tophat is affected by remote code execution via crafted tophat:// or http://localhost...	2026-04-08	6.3	NETWORK	MEDIUM	NVD
CVE-2026-39859	LiquidJS is a Shopify / GitHub Pages compatible template engine in pure JavaScript. Prior to 10.25.3, liquidjs 10.25.0 documents root as constraining ...	2026-04-08	7.5	NETWORK	HIGH	NVD

Loading vulnerability details...

Description

EPSS Score

N/A

Exploit Prediction Scoring System

Dates

Published:

Last Modified:

CVSS v3.1 metrics not available for this vulnerability.

CVSS v4.0 metrics not available for this vulnerability.

CVSS v2.0 metrics not available for this vulnerability.

Weakness Information (CWE)

No CWE information available for this vulnerability.

Affected Products

No affected product information available for this vulnerability.

References

No references available for this vulnerability.