NVD Vulnerabilities

Severity Distribution

Publication Trend

Vulnerability Database

CVE ID	Description	Published	Base Score	Attack Vector	Severity	Actions
CVE-2026-30075	OpenAirInterface Version 2.2.0 has a Buffer Overflow vulnerability in processing UplinkNASTransport containing Authentication Response containing a NA...	2026-04-08	7.5	NETWORK	HIGH	NVD
CVE-2026-2377	A flaw was found in mirror-registry. Authenticated users can exploit the log export feature by providing a specially crafted web address (URL). This a...	2026-04-08	6.5	NETWORK	MEDIUM	NVD
CVE-2025-57175	Siklu EtherHaul 8010 siklu-uimage-nxp-enc-10_6_2-18707-ea552dc00b devices have a static root password.	2026-04-08	6.4	PHYSICAL	MEDIUM	NVD
CVE-2025-14243	A flaw was found in the OpenShift Mirror Registry. This vulnerability allows an unauthenticated, remote attacker to enumerate valid usernames and emai...	2026-04-08	5.3	NETWORK	MEDIUM	NVD
CVE-2023-46945	QD 20230821 is vulnerable to Server-side request forgery (SSRF) via a crafted request	2026-04-08	9.1	NETWORK	CRITICAL	NVD
CVE-2026-33753	rfc3161-client is a Python library implementing the Time-Stamp Protocol (TSP) described in RFC 3161. Prior to 1.0.6, an Authorization Bypass vulnerabi...	2026-04-08	6.2	LOCAL	MEDIUM	NVD
CVE-2026-33229	XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. Prior to 17.4.8 and 17.10.1, an improperly pr...	2026-04-08	9.8	NETWORK	CRITICAL	NVD
CVE-2026-31040	A vulnerability was identified in stata-mcp prior to v1.13.0 where insufficient validation of user-supplied Stata do-file content can lead to command ...	2026-04-08	9.8	NETWORK	CRITICAL	NVD
CVE-2026-39865	Axios is a promise based HTTP client for the browser and Node.js. Starting in version 1.13.0 and prior to 1.13.2, Axios HTTP/2 session cleanup logic c...	2026-04-08	5.9	NETWORK	MEDIUM	NVD
CVE-2026-39410	Hono is a Web application framework that provides support for any JavaScript runtime. Prior to 4.12.12, a discrepancy between browser cookie parsing a...	2026-04-08	4.8	NETWORK	MEDIUM	NVD
CVE-2026-39409	Hono is a Web application framework that provides support for any JavaScript runtime. Prior to 4.12.12, ipRestriction() does not canonicalize IPv4-map...	2026-04-08	6.3	NETWORK	MEDIUM	NVD
CVE-2026-39408	Hono is a Web application framework that provides support for any JavaScript runtime. Prior to 4.12.12, a path traversal issue in toSSG() allows files...	2026-04-08	7.5	NETWORK	HIGH	NVD
CVE-2026-39407	Hono is a Web application framework that provides support for any JavaScript runtime. Prior to 4.12.12, a path handling inconsistency in serveStatic a...	2026-04-08	5.3	NETWORK	MEDIUM	NVD
CVE-2026-39406	@hono/node-server allows running the Hono application on Node.js. Prior to 1.19.13, a path handling inconsistency in serveStatic allows protected stat...	2026-04-08	5.3	NETWORK	MEDIUM	NVD
CVE-2026-39394	CI4MS is a CodeIgniter 4-based CMS skeleton that delivers a production-ready, modular architecture with RBAC authorization and theme support. Prior to...	2026-04-08	8.1	NETWORK	HIGH	NVD

Loading vulnerability details...

Description

EPSS Score

N/A

Exploit Prediction Scoring System

Dates

Published:

Last Modified:

CVSS v3.1 metrics not available for this vulnerability.

CVSS v4.0 metrics not available for this vulnerability.

CVSS v2.0 metrics not available for this vulnerability.

Weakness Information (CWE)

No CWE information available for this vulnerability.

Affected Products

No affected product information available for this vulnerability.

References

No references available for this vulnerability.