Vulnerability Database

12-Month Intensity

Security bulletin trends by severity

0 1000 2000 3000 4000 Apr 25 May 25 Jun 25 Jul 25 Aug 25 Sep 25 Oct 25 Nov 25 Dec 25 Jan Feb Mar

CVSSv4 Base Score Distribution

Vulnerabilities by severity score for the past 7 days

9.0-10 7.0-8.9 4.0-6.9 0.1-3.9 0 1000 2000 3000 4000

Attack Vector

Breakdown by attack vectors for the past 7 days

Remote Adjecent Local Physical

Latest Vulnerability Database Updates

Security Bulletins

View All
SB2026040251
High

Red Hat Enterprise Linux 8 update for libpng15
Patched
21m ago
SB2026040250
Medium

Red Hat Enterprise Linux 8 update for rsync
Patched
21m ago
SB2026040249
Low

Fedora 42 update for mingw-exiv2
Patched
1h ago
SB2026040248
Low

Fedora 43 update for mingw-exiv2
Patched
1h ago
SB2026040247
Low

Fedora 44 update for mingw-exiv2
Patched
1h ago
SB2026040246
Medium

Prototype pollution in Immutable.js
Patched
1h ago
SB2026040245
Medium

Anolis OS update for libarchive
Patched
2h ago
SB2026040244
Low

Anolis OS update for opencryptoki
Patched
2h ago
SB2026040243
Medium

Anolis OS update for gnutls
Patched
2h ago
SB2026040242
Low

Anolis OS update for python3
Patched
2h ago

Zero-Days

View All
#VU124751

Use-after-free in Google Chrome
CVE-2026-5281
1d ago
#VU124720

Embedded malicious code (backdoor) in axios
CVE-ID: N/A
1d ago
#VU124719

Download of code without integrity check in TrueConf client for Windows
CVE-2026-3502
1d ago
#VU124689

Embedded malicious code (backdoor) in trivy
CVE-2026-33634
2d ago
#VU123976

Improperly implemented security check for standard in Google Chrome
CVE-2026-3910
2w ago
#VU123975

Out-of-bounds write in Google Chrome
CVE-2026-3909
2w ago
#VU123412

Integer overflow in Google Android
CVE-2026-21385
1mo ago
#VU123273

Improper authentication in Catalyst SD-WAN Controller (formerly SD-WAN vSmart)
CVE-2026-20127
1mo ago
#VU123002

Use of hard-coded credentials in RecoverPoint for Virtual Machines
CVE-2026-22769
1mo ago
#VU122834

Use-after-free in Google Chrome
CVE-2026-2441
1mo ago

Exploits

View All
#VU124821
Other

Exploit for Input validation error in jackson-core
jackson-core
2h ago
#VU124768
CVE-2026-34787
Other

Exploit for PHP file inclusion in Emlog Pro
Emlog Pro
22h ago
#VU85668
CVE-2024-23222
Github

Exploit for Type confusion in WebKitGTK+ and WPE WebKit
WebKitGTK+
23h ago
#VU123313
CVE-2024-46987
Github

Exploit for Path traversal in Camaleon CMS
Camaleon CMS
23h ago
#VU123638
CVE-2026-29000
Github

Exploit for Improper verification of cryptographic signature in pac4j
pac4j
23h ago
#VU122076
CVE-2025-15467
Github

Exploit for Stack-based buffer overflow in OpenSSL
OpenSSL
23h ago
#VU123742
CVE-2026-25177
Github

Exploit for Improper Restriction of Names for Files and Other Resources in Windows and Windows Server
Windows
23h ago
#VU123653
CVE-2024-14027
Github

Exploit for Memory leak in Linux kernel
Linux kernel
23h ago
#VU118845
CVE-2025-66034
Github

Exploit for Path traversal in fontTools
fontTools
23h ago

Vendor Spotlight - Last 7 Days

IBM Corporation

77 bulletins

Red Hat Inc.

41 bulletins

Linux Foundation

17 bulletins

Cisco Systems, Inc

8 bulletins

Microsoft

2 bulletins