NVD Vulnerabilities

Severity Distribution

Publication Trend

Vulnerability Database

CVE ID	Description	Published	Base Score	Attack Vector	Severity	Actions
CVE-2026-52947	In the Linux kernel, the following vulnerability has been resolved: net: qrtr: fix refcount saturation and potential UAF in qrtr_port_remove In qrtr...	2026-06-24	7.8	LOCAL	HIGH	NVD
CVE-2026-52946	In the Linux kernel, the following vulnerability has been resolved: fs/fcntl: fix SOFTIRQ-unsafe lock order in fasync signaling A SOFTIRQ-safe to SO...	2026-06-24	7.5	NETWORK	HIGH	NVD
CVE-2026-52945	In the Linux kernel, the following vulnerability has been resolved: Revert "wireguard: device: enable threaded NAPI" This reverts commit 933466fc50a...	2026-06-24	7.5	NETWORK	HIGH	NVD
CVE-2026-56111	Marlin Firmware through 2.1.2.7, fixed in commit 1f255d1, when built with MESH_BED_LEVELING enabled, contains an out-of-bounds write vulnerability in ...	2026-06-24	9.1	NETWORK	CRITICAL	NVD
CVE-2026-49269	Apple M1 GPUs retain register file data between compute shader dispatches from different processes. A sandboxed Metal attacker app can run a GPU reade...	2026-06-24	8.6	NETWORK	HIGH	NVD
CVE-2026-11878	Improper neutralization of input during web page generation ('cross-site scripting') vulnerability in OpenText Access Manager allows Cross-Site Script...	2026-06-24	6.1	NETWORK	MEDIUM	NVD
CVE-2026-11877	An unauthorized user can modify configuration through API calls that affects the OpenText Access Manager. This issue affects Access Manager before 5.1...	2026-06-24	7.5	NETWORK	HIGH	NVD
CVE-2026-57307	A missing permission check in Jenkins Zowe zDevOps Plugin 1.1.3.50.ve350c9b_450b_1 and earlier allows attackers with Overall/Read permission to connec...	2026-06-24	4.2	NETWORK	MEDIUM	NVD
CVE-2026-57306	A cross-site request forgery (CSRF) vulnerability in Jenkins Zowe zDevOps Plugin 1.1.3.50.ve350c9b_450b_1 and earlier allows attackers to connect to a...	2026-06-24	4.2	NETWORK	MEDIUM	NVD
CVE-2026-57305	A cross-site request forgery (CSRF) vulnerability in Jenkins Assembla Plugin 1.4 and earlier allows attackers to connect to an attacker-specified URL ...	2026-06-24	5.4	NETWORK	MEDIUM	NVD
CVE-2026-57304	A missing permission check in Jenkins Assembla Plugin 1.4 and earlier allows attackers with Overall/Read permission to connect to an attacker-specifie...	2026-06-24	5.4	NETWORK	MEDIUM	NVD
CVE-2026-57303	Jenkins Assembla Plugin 1.4 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks, allowing attackers able to con...	2026-06-24	7.1	NETWORK	HIGH	NVD
CVE-2026-57302	Jenkins FitNesse Plugin 1.36 and earlier stores passwords unencrypted in job config.xml files on the Jenkins controller, where they can be viewed by u...	2026-06-24	4.3	NETWORK	MEDIUM	NVD
CVE-2026-57301	Jenkins OWASP ZAP Plugin 1.0.7 and earlier performs build operations on the Jenkins controller rather than the assigned agent, allowing attackers with...	2026-06-24	8.8	NETWORK	HIGH	NVD
CVE-2026-57300	A missing permission check in Jenkins MCP Server Plugin 0.177.v629fdb_2557fe and earlier allows attackers with Item/Read permission to read the Pipeli...	2026-06-24	4.3	NETWORK	MEDIUM	NVD

Loading vulnerability details...

Description

EPSS Score

N/A

Exploit Prediction Scoring System

Dates

Published:

Last Modified:

CVSS v3.1 metrics not available for this vulnerability.

CVSS v4.0 metrics not available for this vulnerability.

CVSS v2.0 metrics not available for this vulnerability.

Weakness Information (CWE)

No CWE information available for this vulnerability.

Affected Products

No affected product information available for this vulnerability.

References

No references available for this vulnerability.