NVD Vulnerabilities

Severity Distribution

Publication Trend

Vulnerability Database

CVE ID Description Published Base Score Attack Vector Severity Actions
CVE-2026-28385 In Canonical LXD versions 4.12 through 6.9, a Server-Side Request Forgery (SSRF) vulnerability in the image import functionality allows authenticated ... 2026-06-26 5.0 NETWORK MEDIUM NVD
CVE-2026-13434 A flaw was found in KubeVirt's network annotation generator. When a tenant creates a VirtualMachineInstance with a Multus network configuration, the s... 2026-06-26 4.9 NETWORK MEDIUM NVD
CVE-2026-9640 A privilege escalation vulnerability exists in LXD from 6.0 before 6.9, 5.21.0 before 5.21.5, and 5.0.0 before 5.0.7 regarding the handling of project... 2026-06-26 7.2 NETWORK HIGH NVD
CVE-2026-9639 Nil-pointer dereference in CreateCustomVolumeFromBackup in LXD up to version 6.8 and 5.21 on Linux allows an authenticated user with can_create_storag... 2026-06-26 6.5 NETWORK MEDIUM NVD
CVE-2026-5757 Unauthenticated remote information disclosure vulnerability in Ollama's model quantization engine allows an attacker to read and exfiltrate the server... 2026-06-26 7.5 NETWORK HIGH NVD
CVE-2026-47214 Docling simplifies document processing by parsing diverse formats and providing integrations with the generative AI ecosystem. Prior to 2.94.0, the HT... 2026-06-26 7.1 NETWORK HIGH NVD
CVE-2026-45195 Kernel software installed and running inside a Host VM may post improper commands to the GPU Firmware to trigger a memory read or write outside the pe... 2026-06-26 7.8 LOCAL HIGH NVD
CVE-2026-44018 Docling simplifies document processing by parsing diverse formats and providing integrations with the generative AI ecosystem. From 2.45.0 until 2.91.... 2026-06-26 5.5 LOCAL MEDIUM NVD
CVE-2026-21734 A web page that contains unusual GPU shader code is loaded into the GPU compiler process and can trigger a write out-of-bounds write crash in the GPU ... 2026-06-26 7.7 LOCAL HIGH NVD
CVE-2026-12411 Broken Access Control in the devLXDInstancePatchHandler component of Canonical LXD allows an untrusted guest to mount, read, and overwrite another gue... 2026-06-26 8.4 LOCAL HIGH NVD
CVE-2026-0828 Kernel driver ProcessMonitorDriver.sys in Safetica's endpoint client x64 , versions 10.5.75.0 and 11.11.4.0, allows unprivileged user to abuse IOCTL p... 2026-06-26 7.5 NETWORK HIGH NVD
CVE-2026-0685 Server side template inject (SSTI) in the expression evaluation component in Genshi Template Engine version 0.7.9 allows a remote attacker to achieve ... 2026-06-26 9.8 NETWORK CRITICAL NVD
CVE-2025-11919 The default JVM can access files and directories under `/tmp/` including the `$TemporaryDirectory` of other users on the same cloud instance (`/tmp/Us... 2026-06-26 9.6 NETWORK CRITICAL NVD
CVE-2023-20572 An observable timing discrepancy in the ASP could allow a privileged attacker to perform a brute-force attack against the hash message authentication ... 2026-06-26 5.6 LOCAL MEDIUM NVD
CVE-2023-20540 An observable timing discrepancy in the ASP could allow a privileged attacker to perform a brute-force attack against the hash message authentication ... 2026-06-26 1.8 LOCAL LOW NVD