Vulnerability Database

12-Month Intensity

Security bulletin trends by severity

0 1000 2000 3000 4000 May 25 Jun 25 Jul 25 Aug 25 Sep 25 Oct 25 Nov 25 Dec 25 Jan Feb Mar Apr

CVSSv4 Base Score Distribution

Vulnerabilities by severity score for the past 7 days

9.0-10 7.0-8.9 4.0-6.9 0.1-3.9 0 500 1000 1500 2000

Attack Vector

Breakdown by attack vectors for the past 7 days

Remote Adjecent Local Physical

Latest Vulnerability Database Updates

Security Bulletins

View All
SB2026051704
High

Fedora EPEL 9 update for chromium
Patched
4h ago
SB2026051703
High

Fedora EPEL 10.1 update for chromium
Patched
4h ago
SB2026051702
High

Fedora EPEL 10.3 update for chromium
Patched
4h ago
SB2026051701
High

Fedora EPEL 10.2 update for chromium
Patched
4h ago
SB2026051615
Medium

Authenticated buffer overflow in MongoDB Server
Patched
23h ago
SB2026051614
Low

Authorization bypass through user-controlled key in EspoCRM
Patched
23h ago
SB2026051613
High

Multiple vulnerabilities in Roxy-WI
Patched
23h ago
SB2026051612
Medium

Improper access control in OpenMetadata
Patched
23h ago
SB2026051611
Medium

Allocation of Resources Without Limits or Throttling in devalue
Patched
23h ago
SB2026051610
Medium

Improper Neutralization of Script in Attributes in a Web Page in draw.io
Patched
1d ago

Zero-Days

View All
#VU131560
Patch pending

Stored cross-site scripting in Microsoft Exchange Server
CVE-2026-42897
2d ago
#VU131450

Improper authentication in Catalyst SD-WAN Controller (formerly SD-WAN vSmart)
CVE-2026-20182
2d ago
#VU130638

Input validation error in Endpoint Manager Mobile (formerly MobileIron Core)
CVE-2026-6973
1w ago
#VU130262

Embedded malicious code (backdoor) in Daemon Tools
CVE-ID: N/A
1w ago
#VU130217

Out-of-bounds write in Palo Alto PAN-OS
CVE-2026-0300
1w ago
#VU128557

Improper authentication in cPanel
CVE-2026-41940
2w ago
#VU126820

Missing Authentication for Critical Function in Oracle Identity Manager Connector
CVE-2026-21992
3w ago
#VU126208

Insufficient Granularity of Access Control in Windows Defender
CVE-2026-33825
1mo ago
#VU126005

Input validation error in Microsoft SharePoint Server
CVE-2026-32201
1mo ago
#VU125813

Prototype pollution in Adobe Acrobat
CVE-2026-34621
1mo ago

Exploits

View All
#VU131450
CVE-2026-20182
Metasploit

Exploit for Improper authentication in Cisco Systems, Inc products
Catalyst SD-WAN Manager (formerly SD-WAN vManage)
1d ago
#VU131309
CVE-2026-40369
Github

Exploit for Untrusted Pointer Dereference in Windows and Windows Server
Windows
2d ago
#VU128557
CVE-2026-41940
Github

Exploit for Improper authentication in cPanel
cPanel
2d ago
#VU127228
CVE-2026-27944
Github

Exploit for Missing Authentication for Critical Function in nginx-ui
nginx-ui
2d ago
#VU128557
CVE-2026-41940
Github

Exploit for Improper authentication in cPanel
cPanel
2d ago
#VU127864
CVE-2026-31431
Github

Exploit for Improper control of a resource through its lifetime in Linux kernel
Linux kernel
2d ago
#VU127864
CVE-2026-31431
Github

Exploit for Improper control of a resource through its lifetime in Linux kernel
Linux kernel
2d ago
#VU108990
CVE-2025-31207
Github

Exploit for Information disclosure in Apple iOS and iPadOS
Apple iOS
2d ago
#VU118302
CVE-2025-62215
Github

Exploit for Race condition in Windows and Windows Server
Windows
2d ago

Vendor Spotlight - Last 7 Days

Red Hat Inc.

89 bulletins

Microsoft

74 bulletins

IBM Corporation

53 bulletins

F5 Networks

25 bulletins

Linux Foundation

16 bulletins