Vulnerability Database

12-Month Intensity

Security bulletin trends by severity

0 1000 2000 3000 4000 Apr 25 May 25 Jun 25 Jul 25 Aug 25 Sep 25 Oct 25 Nov 25 Dec 25 Jan Feb Mar

CVSSv4 Base Score Distribution

Vulnerabilities by severity score for the past 7 days

9.0-10 7.0-8.9 4.0-6.9 0.1-3.9 0 500 1000 1500 2000

Attack Vector

Breakdown by attack vectors for the past 7 days

Remote Adjecent Local Physical

Latest Vulnerability Database Updates

Security Bulletins

View All
SB20260425221
Low

Anolis OS update for cosign
Patched
11h ago
SB20260425220
Low

Anolis OS update for cosign
Patched
11h ago
SB20260425219
Medium

Fedora 42 update for tcpflow
Patched
11h ago
SB20260425218
Medium

Fedora 43 update for tcpflow
Patched
11h ago
SB20260425217
Medium

Fedora EPEL 8 update for tcpflow
Patched
11h ago
SB20260425216
Medium

Fedora 44 update for tcpflow
Patched
11h ago
SB20260425215
Medium

Input validation error in Preact
Patched
11h ago
SB20260425214
Low

Improper Certificate Validation in Cosign
Patched
11h ago
SB20260425213
Low

Insufficient verification of data authenticity in Cosign
Patched
11h ago
SB20260425212
Medium

Remote denial of service in tcpflow
Not patched
12h ago

Zero-Days

View All
#VU126820

Missing Authentication for Critical Function in Oracle Identity Manager Connector
CVE-2026-21992
4d ago
#VU126208

Insufficient Granularity of Access Control in Windows Defender
CVE-2026-33825
1w ago
#VU126005

Input validation error in Microsoft SharePoint Server
CVE-2026-32201
1w ago
#VU125813

Prototype pollution in Adobe Acrobat
CVE-2026-34621
2w ago
#VU125748

Embedded malicious code (backdoor) in Smart Slider 3
CVE-ID: N/A
2w ago
#VU124861

Missing authorization in FortiClientEMS
CVE-2026-35616
3w ago
#VU124751

Use-after-free in Google Chrome
CVE-2026-5281
3w ago
#VU124720

Embedded malicious code (backdoor) in axios
CVE-ID: N/A
3w ago
#VU124719

Download of code without integrity check in TrueConf client for Windows
CVE-2026-3502
3w ago
#VU124689

Embedded malicious code (backdoor) in trivy
CVE-2026-33634
3w ago

Exploits

View All
#VU127512
CVE-2026-23887
Other

Exploit for Stored cross-site scripting in Group Office
Group Office
1d ago
#VU127527
CVE-2026-25511
Other

Exploit for Server-Side Request Forgery (SSRF) in Group Office
Group Office
1d ago
#VU127550
CVE-2026-30237
Other

Exploit for Cross-site scripting in Group Office
Group Office
1d ago
#VU127583
CVE-2026-30238
Other

Exploit for Cross-site scripting in Group Office
Group Office
1d ago
#VU127533
CVE-2026-27966
Metasploit

Exploit for Code Injection in Langflow
Langflow
1d ago
#VU127508
CVE-2026-41486
Other

Exploit for Input validation error in Ray
Ray
2d ago
#VU127507
CVE-2026-23492
Other

Exploit for SQL injection in Pimcore
Pimcore
2d ago
#VU127451
CVE-2024-51092
Metasploit

Exploit for Command injection in LibreNMS
LibreNMS
2d ago
#VU126884
CVE-2026-32629
Other

Exploit for Stored cross-site scripting in phpMyFAQ
phpMyFAQ
2d ago

Vendor Spotlight - Last 7 Days

Linux Foundation

259 bulletins

Oracle

166 bulletins

Red Hat Inc.

99 bulletins

IBM Corporation

66 bulletins

Google

4 bulletins