Vulnerability Database

12-Month Intensity

Security bulletin trends by severity

0 1000 2000 3000 4000 Apr 25 May 25 Jun 25 Jul 25 Aug 25 Sep 25 Oct 25 Nov 25 Dec 25 Jan Feb Mar

CVSSv4 Base Score Distribution

Vulnerabilities by severity score for the past 7 days

9.0-10 7.0-8.9 4.0-6.9 0.1-3.9 0 1000 2000 3000 4000

Attack Vector

Breakdown by attack vectors for the past 7 days

Remote Adjecent Local Physical

Latest Vulnerability Database Updates

Security Bulletins

View All
SB2026040262
High

Multiple vulnerabilities in Service Interconnect
Patched Public exploit
2m ago
SB2026040261
High

Multiple vulnerabilities in handlebars.js
Patched
5m ago
SB2026040260
High

Red Hat Enterprise Linux 8 update for libpng12
Patched
2h ago
SB2026040259
Medium

Cache poisoning in Varnish Cache and Varnish Enterprise
Patched
2h ago
SB2026040258
Medium

Multiple vulnerabilities in Rack
Patched
2h ago
SB2026040257
High

Red Hat Enterprise Linux 8 update for libpng15
Patched
3h ago
SB2026040256
High

Red Hat Enterprise Linux 8 update for libpng15
Patched
3h ago
SB2026040255
High

Red Hat Enterprise Linux 8 update for libpng15
Patched
3h ago
SB2026040254
High

Red Hat Enterprise Linux 8 update for libpng15
Patched
3h ago
SB2026040253
Medium

Red Hat Enterprise Linux 7 Extended Lifecycle Support update for python3
Patched
3h ago

Zero-Days

View All
#VU124751

Use-after-free in Google Chrome
CVE-2026-5281
1d ago
#VU124720

Embedded malicious code (backdoor) in axios
CVE-ID: N/A
1d ago
#VU124719

Download of code without integrity check in TrueConf client for Windows
CVE-2026-3502
1d ago
#VU124689

Embedded malicious code (backdoor) in trivy
CVE-2026-33634
3d ago
#VU123976

Improperly implemented security check for standard in Google Chrome
CVE-2026-3910
2w ago
#VU123975

Out-of-bounds write in Google Chrome
CVE-2026-3909
2w ago
#VU123412

Integer overflow in Google Android
CVE-2026-21385
1mo ago
#VU123273

Improper authentication in Catalyst SD-WAN Controller (formerly SD-WAN vSmart)
CVE-2026-20127
1mo ago
#VU123002

Use of hard-coded credentials in RecoverPoint for Virtual Machines
CVE-2026-22769
1mo ago
#VU122834

Use-after-free in Google Chrome
CVE-2026-2441
1mo ago

Exploits

View All
#VU124821
Other

Exploit for Input validation error in jackson-core
jackson-core
6h ago
#VU124768
CVE-2026-34787
Other

Exploit for PHP file inclusion in Emlog Pro
Emlog Pro
1d ago
#VU85668
CVE-2024-23222
Github

Exploit for Type confusion in WebKitGTK+ and WPE WebKit
WebKitGTK+
1d ago
#VU123313
CVE-2024-46987
Github

Exploit for Path traversal in Camaleon CMS
Camaleon CMS
1d ago
#VU123638
CVE-2026-29000
Github

Exploit for Improper verification of cryptographic signature in pac4j
pac4j
1d ago
#VU122076
CVE-2025-15467
Github

Exploit for Stack-based buffer overflow in OpenSSL
OpenSSL
1d ago
#VU123742
CVE-2026-25177
Github

Exploit for Improper Restriction of Names for Files and Other Resources in Windows and Windows Server
Windows
1d ago
#VU123653
CVE-2024-14027
Github

Exploit for Memory leak in Linux kernel
Linux kernel
1d ago
#VU118845
CVE-2025-66034
Github

Exploit for Path traversal in fontTools
fontTools
1d ago

Vendor Spotlight - Last 7 Days

IBM Corporation

77 bulletins

Red Hat Inc.

41 bulletins

Linux Foundation

17 bulletins

Cisco Systems, Inc

8 bulletins

Microsoft

2 bulletins