NVD Vulnerabilities

Severity Distribution

Publication Trend

Vulnerability Database

CVE ID	Description	Published	Base Score	Attack Vector	Severity	Actions
CVE-2026-54311	n8n is an open source workflow automation platform. Prior to 2.25.7 and 2.26.2, an authenticated user with permission to create or modify workflows co...	2026-06-23	7.7	NETWORK	HIGH	NVD
CVE-2026-54310	n8n is an open source workflow automation platform. Prior to 2.25.7 and 2.26.2, an authenticated user with permission to create or modify workflows co...	2026-06-23	9.9	NETWORK	CRITICAL	NVD
CVE-2026-54309	n8n is an open source workflow automation platform. Prior to 2.25.7 and 2.26.2, when @n8n/mcp-browser is run in HTTP transport mode, the MCP endpoint ...	2026-06-23	10.0	NETWORK	CRITICAL	NVD
CVE-2026-54303	n8n is an open source workflow automation platform. Prior to 2.24.0, an endpoint in the Meta and Microsoft Teams trigger nodes reflects a query parame...	2026-06-23	5.4	NETWORK	MEDIUM	NVD
CVE-2025-62180	Pega Platform versions 8.3.0 through Infinity 25.1.2 are affected by an authorization weakness that may allow authenticated users to access certain ad...	2026-06-23	7.1	NETWORK	HIGH	NVD
CVE-2025-55639	GPAC MP4Box v2.4 was discovered to contain a NULL pointer dereference in the gf_isom_add_track_kind() function at isomedia/isom_write.c. This vulnerab...	2026-06-23	6.5	NETWORK	MEDIUM	NVD
CVE-2025-15619	HCL Connections contains a broken access control vulnerability that may allow an unauthorized user to view data in a single specific scenario.	2026-06-23	3.5	NETWORK	LOW	NVD
CVE-2026-12969	An out-of-bounds read vulnerability exists in dnsmasq's find_soa() function in src/rfc1035.c. When parsing NS section records, extract_name() is calle...	2026-06-23	5.3	NETWORK	MEDIUM	NVD
CVE-2026-10609	A missing authorization flaw was found in the OpenShift Cluster Logging Operator. The operator creates and forwards ServiceAccount tokens to output de...	2026-06-23	6.8	NETWORK	MEDIUM	NVD
CVE-2026-56379	ImageMagick before 7.1.2-15 and 6.9.13-40 contains a command injection vulnerability in the SVG decoder that allows attackers to inject arbitrary MVG ...	2026-06-23	N/A	NETWORK	NONE	NVD
CVE-2026-56376	ImageMagick before 7.1.2-15 and 6.9.13-40 contains a heap use-after-free in the meta coder: when memory allocation fails, a single byte is written to ...	2026-06-23	3.7	NETWORK	LOW	NVD
CVE-2026-56371	ImageMagick before 7.1.2-15 and 6.9.13-40 contains a memory leak in coders/txt.c when processing TXT files with texture attributes: the texture object...	2026-06-23	N/A	NETWORK	NONE	NVD
CVE-2026-56301	Nuxt 4.0.0 before 4.4.7 and 3.18.0 before 3.21.7, when running the development server (nuxt dev) on Linux, binds the vite-node IPC server to an abstra...	2026-06-23	5.5	LOCAL	MEDIUM	NVD
CVE-2026-56275	Flowise before 3.1.0 contains a server-side request forgery vulnerability in the Execute Flow node that allows attackers to bypass security validation...	2026-06-23	7.1	NETWORK	HIGH	NVD
CVE-2026-56274	Flowise before 3.1.2 contains multiple OS command injection vulnerabilities in the Custom MCP Server feature due to incomplete command-flag validation...	2026-06-23	9.9	NETWORK	CRITICAL	NVD

Loading vulnerability details...

Description

EPSS Score

N/A

Exploit Prediction Scoring System

Dates

Published:

Last Modified:

CVSS v3.1 metrics not available for this vulnerability.

CVSS v4.0 metrics not available for this vulnerability.

CVSS v2.0 metrics not available for this vulnerability.

Weakness Information (CWE)

No CWE information available for this vulnerability.

Affected Products

No affected product information available for this vulnerability.

References

No references available for this vulnerability.