NVD Vulnerabilities

Severity Distribution

Publication Trend

Vulnerability Database

CVE ID	Description	Published	Base Score	Attack Vector	Severity	Actions
CVE-2026-2757	Incorrect boundary conditions in the WebRTC: Audio/Video component. This vulnerability affects Firefox < 148, Firefox ESR < 115.33, Firefox ESR < 140....	2026-02-24	9.8	NETWORK	CRITICAL	NVD
CVE-2026-2634	Malicious scripts could cause desynchronization between the address bar and web content before a response is received in Firefox iOS, allowing attacke...	2026-02-24	9.8	NETWORK	CRITICAL	NVD
CVE-2026-2460	A vulnerability exists in REB500 for an authenticated user with low-level privileges to access and alter the content of directories by using the DAC p...	2026-02-24	8.1	NETWORK	HIGH	NVD
CVE-2026-2459	A vulnerability exists in REB500 for an authenticated user with Installer role to access and alter the contents of directories that the role is not au...	2026-02-24	8.1	NETWORK	HIGH	NVD
CVE-2026-23984	An Improper Input Validation vulnerability exists in Apache Superset that allows an authenticated user with SQLLab access to bypass the read-only veri...	2026-02-24	6.5	NETWORK	MEDIUM	NVD
CVE-2026-23983	A Sensitive Data Exposure vulnerability exists in Apache Superset allowing authenticated users to retrieve sensitive user information. The Tag endpoin...	2026-02-24	6.5	NETWORK	MEDIUM	NVD
CVE-2026-23982	An Improper Authorization vulnerability exists in Apache Superset that allows a low-privileged user to bypass data access controls. When creating a da...	2026-02-24	6.5	NETWORK	MEDIUM	NVD
CVE-2026-23980	Improper Neutralization of Special Elements used in a SQL Command ('SQL Injection') vulnerability in Apache Superset allows an authenticated user with...	2026-02-24	6.5	NETWORK	MEDIUM	NVD
CVE-2026-23969	Apache Superset utilizes a configurable dictionary, DISALLOWED_SQL_FUNCTIONS, to restrict the execution of potentially sensitive SQL functions within ...	2026-02-24	6.5	NETWORK	MEDIUM	NVD
CVE-2026-1773	IEC 60870-5-104: Potential Denial of Service impact on reception of invalid U-format frame. Product is only affected if IEC 60870-5-104 bi-directional...	2026-02-24	7.5	NETWORK	HIGH	NVD
CVE-2026-1772	RTU500 web interface: An unprivileged user can read user management information. The information cannot be accessed via the RTU500 web user interface ...	2026-02-24	5.3	NETWORK	MEDIUM	NVD
CVE-2025-14577	Slican NCP/IPL/IPM/IPU devices are vulnerable to PHP Function Injection. An unauthenticated remote attacker is able to execute arbitrary PHP commands ...	2026-02-24	9.3	NETWORK	CRITICAL	NVD
CVE-2026-2664	An out of bounds read vulnerability in the grpcfuse kernel module present in the Linux VM in Docker Desktop for Windows, Linux and macOS up to version...	2026-02-24	7.8	LOCAL	HIGH	NVD
CVE-2025-27555	Airflow versions before 2.11.1 have a vulnerability that allows authenticated users with audit log access to see sensitive values in audit logs which ...	2026-02-24	6.5	NETWORK	MEDIUM	NVD
CVE-2024-56373	DAG Author (who already has quite a lot of permissions) could manipulate database of Airflow 2 in the way to execute arbitrary code in the web-server ...	2026-02-24	8.4	NETWORK	HIGH	NVD

Loading vulnerability details...

Description

EPSS Score

N/A

Exploit Prediction Scoring System

Dates

Published:

Last Modified:

CVSS v3.1 metrics not available for this vulnerability.

CVSS v4.0 metrics not available for this vulnerability.

CVSS v2.0 metrics not available for this vulnerability.

Weakness Information (CWE)

No CWE information available for this vulnerability.

Affected Products

No affected product information available for this vulnerability.

References

No references available for this vulnerability.