NVD Vulnerabilities

Severity Distribution

Publication Trend

Vulnerability Database

CVE ID	Description	Published	Base Score	Attack Vector	Severity	Actions
CVE-2026-50189	Appsmith is a platform to build admin panels, internal tools, and dashboards. Prior to 2.1, Appsmith's bundled supervisord exposes an XML-RPC interfac...	2026-06-24	7.2	NETWORK	HIGH	NVD
CVE-2026-49979	Appsmith is a platform to build admin panels, internal tools, and dashboards. Prior to 1.99, the POST /api/v1/admin/send-test-email endpoint accepts a...	2026-06-24	2.7	NETWORK	LOW	NVD
CVE-2026-39897	Cacti is an open source performance and fault management framework. Versions 1.2.30 and below contain a Reflected XSS vulnerability in the html_auth_f...	2026-06-24	6.1	NETWORK	MEDIUM	NVD
CVE-2026-39894	Cacti is an open source performance and fault management framework. In versions 1.2.30 and below, the locale-dependent decimal formatting in rrdtool_f...	2026-06-24	2.9	LOCAL	LOW	NVD
CVE-2026-39893	Cacti is an open source performance and fault management framework. In versions 1.2.30 and prior, the rfilter request variable was concatenated into a...	2026-06-24	9.8	NETWORK	CRITICAL	NVD
CVE-2026-2050	GIMP HDR File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary ...	2026-06-24	7.8	LOCAL	HIGH	NVD
CVE-2026-10642	The Zephyr PL011 UART driver (drivers/serial/uart_pl011.c) contains an unbounded software loop in pl011_irq_tx_enable() that repeatedly invokes the in...	2026-06-24	6.5	ADJACENT_NETWORK	MEDIUM	NVD
CVE-2026-10043	MosaicML Composer Deserialization of Untrusted Data Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitra...	2026-06-24	N/A	None	None	NVD
CVE-2025-60468	GPAC Multimedia Open Source Project GPAC Project/MP4Box 2.5-DEV-rev1593-gfe88c3545-master is affected by: Buffer Overflow. The impact is: cause a deni...	2026-06-24	5.5	LOCAL	MEDIUM	NVD
CVE-2026-7539	A potential security vulnerability has been identified in the HP Accessory WMI Provider installer for some HP Docking Stations, which might allow esca...	2026-06-24	7.3	LOCAL	HIGH	NVD
CVE-2026-13208	A flaw was found in KubeVirt's virt-handler domain notify server. The gRPC handlers for HandleDomainEvent and HandleK8SEvent derive the VMI identity (...	2026-06-24	6.5	LOCAL	MEDIUM	NVD
CVE-2026-13201	A flaw was found in KubeVirt's safepath package used by virt-handler. The OpenAtNoFollow function uses O_PATH\|O_NOFOLLOW to obtain a file descriptor t...	2026-06-24	7.3	LOCAL	HIGH	NVD
CVE-2026-11998	A flaw in AngularJS' Strict Contextual Escaping (SCE) logic allows bypassing certain SCE policies for resource URLs and can lead to arbitrary JavaScri...	2026-06-24	7.6	NETWORK	HIGH	NVD
CVE-2026-49980	Rclone is a command-line program to sync files and directories to and from different cloud storage providers. From 1.46.0 until 1.74.3, rclone rcd --r...	2026-06-24	9.8	NETWORK	CRITICAL	NVD
CVE-2026-13038	Use after free in Autofill in Google Chrome on Windows prior to 149.0.7827.197 allowed a remote attacker to execute arbitrary code via a crafted HTML ...	2026-06-24	8.8	NETWORK	HIGH	NVD

Loading vulnerability details...

Description

EPSS Score

N/A

Exploit Prediction Scoring System

Dates

Published:

Last Modified:

CVSS v3.1 metrics not available for this vulnerability.

CVSS v4.0 metrics not available for this vulnerability.

CVSS v2.0 metrics not available for this vulnerability.

Weakness Information (CWE)

No CWE information available for this vulnerability.

Affected Products

No affected product information available for this vulnerability.

References

No references available for this vulnerability.