NVD Vulnerabilities

Severity Distribution

Publication Trend

Vulnerability Database

CVE ID	Description	Published	Base Score	Attack Vector	Severity	Actions
CVE-2026-30625	Upsonic 0.71.6 contains a remote code execution vulnerability in its MCP server/task creation functionality. The application allows users to define MC...	2026-04-15	N/A	None	None	NVD
CVE-2026-30624	Agent Zero 0.9.8 contains a remote code execution vulnerability in its External MCP Servers configuration feature. The application allows users to def...	2026-04-15	8.6	NETWORK	HIGH	NVD
CVE-2026-30617	LangChain-ChatChat 0.3.1 contains a remote code execution vulnerability in its MCP STDIO server configuration and execution handling. A remote attacke...	2026-04-15	8.6	NETWORK	HIGH	NVD
CVE-2026-30616	Jaaz 1.0.30 contains a remote code execution vulnerability in its MCP STDIO command execution handling. A remote attacker can send crafted network req...	2026-04-15	7.3	NETWORK	HIGH	NVD
CVE-2026-30615	A prompt injection vulnerability in Windsurf 1.9544.26 allows remote attackers to execute arbitrary commands on a victim system. When Windsurf process...	2026-04-15	8.0	LOCAL	HIGH	NVD
CVE-2026-30461	Daylight Studio FuelCMS v1.5.2 was discovered to contain an authenticated remote code execution (RCE) vulnerability via the /controllers/Installer.php...	2026-04-15	N/A	None	None	NVD
CVE-2026-20205	In Splunk MCP Server app versions below 1.0.3 , a user who holds a role with access to the Splunk `_internal` index or possesses the high-privilege ca...	2026-04-15	7.2	NETWORK	HIGH	NVD
CVE-2026-20204	In Splunk Enterprise versions below 10.2.1, 10.0.5, 9.4.10, and 9.3.11, and Splunk Cloud Platform versions below 10.4.2603.0, 10.3.2512.5, 10.2.2510.9...	2026-04-15	7.1	NETWORK	HIGH	NVD
CVE-2026-20203	In Splunk Enterprise versions below 10.2.2, 10.0.5, 9.4.10, and 9.3.11, and Splunk Cloud Platform versions below 10.4.2603.0, 10.3.2512.6, 10.2.2510.1...	2026-04-15	4.3	NETWORK	MEDIUM	NVD
CVE-2026-20202	In Splunk Enterprise versions below 10.2.2, 10.0.5, 9.4.10, and 9.3.11, and Splunk Cloud Platform versions below 10.4.2603.0, 10.3.2512.6, 10.2.2510.1...	2026-04-15	6.6	NETWORK	MEDIUM	NVD
CVE-2025-67841	Nordic Semiconductor IronSide SE for nRF54H20 before 23.0.2+17 has an Algorithmic complexity issue.	2026-04-15	N/A	None	None	NVD
CVE-2025-53444	Cross-Site Request Forgery (CSRF) vulnerability in DeluxeThemes Userpro allows Cross Site Request Forgery.This issue affects Userpro: from n/a before ...	2026-04-15	4.3	NETWORK	MEDIUM	NVD
CVE-2025-12141	In Grafana's alerting system, users with edit permissions for a contact point, specifically the permissions “alert.notifications:write” or “alert.noti...	2026-04-15	1.3	NETWORK	LOW	NVD
CVE-2026-4682	Certain HP DeskJet All in One devices may be vulnerable to remote code execution caused by a buffer overflow when specially crafted Web Services for D...	2026-04-15	8.7	ADJACENT	HIGH	NVD
CVE-2026-4667	HP System Optimizer might potentially be vulnerable to escalation of privilege. HP is releasing an update to mitigate this potential vulnerability.	2026-04-15	7.3	LOCAL	HIGH	NVD

Loading vulnerability details...

Description

EPSS Score

N/A

Exploit Prediction Scoring System

Dates

Published:

Last Modified:

CVSS v3.1 metrics not available for this vulnerability.

CVSS v4.0 metrics not available for this vulnerability.

CVSS v2.0 metrics not available for this vulnerability.

Weakness Information (CWE)

No CWE information available for this vulnerability.

Affected Products

No affected product information available for this vulnerability.

References

No references available for this vulnerability.