Vulnerability Database

12-Month Intensity

Security bulletin trends by severity

0 1000 2000 3000 4000 May 25 Jun 25 Jul 25 Aug 25 Sep 25 Oct 25 Nov 25 Dec 25 Jan Feb Mar Apr

CVSSv4 Base Score Distribution

Vulnerabilities by severity score for the past 7 days

9.0-10 7.0-8.9 4.0-6.9 0.1-3.9 0 500 1000 1500 2000

Attack Vector

Breakdown by attack vectors for the past 7 days

Remote Adjecent Local Physical

Latest Vulnerability Database Updates

Security Bulletins

View All
SB20260502158
Medium

Fedora 43 update for SDL3_image
Patched
5h ago
SB20260502157
Medium

Fedora 44 update for SDL3_image
Patched
5h ago
SB20260502156
Medium

Multiple vulnerabilities in WeGIA
Patched
7h ago
SB20260502155
Medium

Improper Removal of Sensitive Information Before Storage or Transfer in Argo CD
Patched
7h ago
SB20260502154
Medium

Multiple vulnerabilities in Argo CD
Patched
7h ago
SB20260502153
High

Anolis OS update for kernel:5.10
Patched Exploited
8h ago
SB20260502152
Low

Time-of-check Time-of-use (TOCTOU) Race Condition in Linux kernel packet
Patched
8h ago
SB20260502151
Low

Out-of-bounds read in Linux kernel crypto ccp driver
Patched
8h ago
SB20260502150
Low

Out-of-bounds read in Linux kernel crypto ccp driver
Patched
8h ago
SB20260502149
Low

Out-of-bounds read in Linux kernel crypto ccp driver
Patched
8h ago

Zero-Days

View All
#VU128557

Improper authentication in cPanel
CVE-2026-41940
2d ago
#VU126820

Missing Authentication for Critical Function in Oracle Identity Manager Connector
CVE-2026-21992
1w ago
#VU126208

Insufficient Granularity of Access Control in Windows Defender
CVE-2026-33825
2w ago
#VU126005

Input validation error in Microsoft SharePoint Server
CVE-2026-32201
2w ago
#VU125813

Prototype pollution in Adobe Acrobat
CVE-2026-34621
3w ago
#VU125748

Embedded malicious code (backdoor) in Smart Slider 3
CVE-ID: N/A
3w ago
#VU124861

Missing authorization in FortiClientEMS
CVE-2026-35616
4w ago
#VU124751

Use-after-free in Google Chrome
CVE-2026-5281
1mo ago
#VU124720

Embedded malicious code (backdoor) in axios
CVE-ID: N/A
1mo ago
#VU124719

Download of code without integrity check in TrueConf client for Windows
CVE-2026-3502
1mo ago

Exploits

View All
#VU127864
CVE-2026-31431
Metasploit

Exploit for Improper control of a resource through its lifetime in Linux kernel
Linux kernel
2d ago
#VU105805
CVE-2025-2304
Github

Exploit for Permissions, Privileges, and Access Controls in Camaleon CMS
Camaleon CMS
2d ago
#VU127584
CVE-2026-32136
Github

Exploit for Improper Authentication in AdGuard Home
AdGuard Home
2d ago
#VU126163
CVE-2026-32223
Github

Exploit for Heap-based buffer overflow in Windows Server and Windows
Windows Server
2d ago
#VU125527
CVE-2026-30824
Github

Exploit for Missing Authentication for Critical Function in Flowise
Flowise
2d ago
#VU124842
CVE-2026-33937
Github

Exploit for Code Injection in handlebars.js
handlebars.js
2d ago
#VU107991
CVE-2025-32432
Github

Exploit for Code Injection in Craft CMS
Craft CMS
2d ago
#VU128557
CVE-2026-41940
Github

Exploit for Improper authentication in cPanel
cPanel
2d ago
#VU128557
CVE-2026-41940
Github

Exploit for Improper authentication in cPanel
cPanel
2d ago

Vendor Spotlight - Last 7 Days

Linux Foundation

156 bulletins

Red Hat Inc.

85 bulletins

IBM Corporation

62 bulletins

Apache Foundation

5 bulletins

Google

3 bulletins