Vulnerability Database

12-Month Intensity

Security bulletin trends by severity

0 1000 2000 3000 4000 May 25 Jun 25 Jul 25 Aug 25 Sep 25 Oct 25 Nov 25 Dec 25 Jan Feb Mar Apr

CVSSv4 Base Score Distribution

Vulnerabilities by severity score for the past 7 days

9.0-10 7.0-8.9 4.0-6.9 0.1-3.9 0 500 1000 1500 2000

Attack Vector

Breakdown by attack vectors for the past 7 days

Remote Adjecent Local Physical

Latest Vulnerability Database Updates

Security Bulletins

View All
SB2026051603
Medium

Fedora 43 update for haproxy
Patched
1h ago
SB2026051602
Medium

Fedora 44 update for haproxy
Patched
1h ago
SB2026051601
Medium

Fedora 42 update for haproxy
Patched
1h ago
SB20260515120
High

SUSE update for the Linux Kernel (Live Patch 12 for SUSE Linux Enterprise 15 SP7)
Patched Public exploit
5h ago
SB20260515119
Medium

IBM Robotic Process Automation for Cloud Pak update for Axios
Patched Public exploit
5h ago
SB20260515118
Medium

IBM Robotic Process Automation for Cloud Pak update for Immutable.js
Patched
5h ago
SB20260515117
High

Multiple vulnerabilities in IBM Robotic Process Automation for Cloud Pak
Patched
5h ago
SB20260515116
Low

Fedora 42 update for kernel
Patched
5h ago
SB20260515115
Medium

Multiple vulnerabilities in IBM Robotic Process Automation for Cloud Pak
Patched
5h ago
SB20260515114
High

Debian update for chromium
Patched
5h ago

Zero-Days

View All
#VU131560
Patch pending

Stored cross-site scripting in Microsoft Exchange Server
CVE-2026-42897
15h ago
#VU131450

Improper authentication in Catalyst SD-WAN Controller (formerly SD-WAN vSmart)
CVE-2026-20182
1d ago
#VU130638

Input validation error in Endpoint Manager Mobile (formerly MobileIron Core)
CVE-2026-6973
1w ago
#VU130262

Embedded malicious code (backdoor) in Daemon Tools
CVE-ID: N/A
1w ago
#VU130217

Out-of-bounds write in Palo Alto PAN-OS
CVE-2026-0300
1w ago
#VU128557

Improper authentication in cPanel
CVE-2026-41940
2w ago
#VU126820

Missing Authentication for Critical Function in Oracle Identity Manager Connector
CVE-2026-21992
3w ago
#VU126208

Insufficient Granularity of Access Control in Windows Defender
CVE-2026-33825
1mo ago
#VU126005

Input validation error in Microsoft SharePoint Server
CVE-2026-32201
1mo ago
#VU125813

Prototype pollution in Adobe Acrobat
CVE-2026-34621
1mo ago

Exploits

View All
#VU131450
CVE-2026-20182
Metasploit

Exploit for Improper authentication in Cisco Systems, Inc products
Catalyst SD-WAN Manager (formerly SD-WAN vManage)
7h ago
#VU131309
CVE-2026-40369
Github

Exploit for Untrusted Pointer Dereference in Windows and Windows Server
Windows
15h ago
#VU128557
CVE-2026-41940
Github

Exploit for Improper authentication in cPanel
cPanel
15h ago
#VU127228
CVE-2026-27944
Github

Exploit for Missing Authentication for Critical Function in nginx-ui
nginx-ui
15h ago
#VU128557
CVE-2026-41940
Github

Exploit for Improper authentication in cPanel
cPanel
15h ago
#VU127864
CVE-2026-31431
Github

Exploit for Improper control of a resource through its lifetime in Linux kernel
Linux kernel
15h ago
#VU127864
CVE-2026-31431
Github

Exploit for Improper control of a resource through its lifetime in Linux kernel
Linux kernel
15h ago
#VU108990
CVE-2025-31207
Github

Exploit for Information disclosure in Apple iOS and iPadOS
Apple iOS
15h ago
#VU118302
CVE-2025-62215
Github

Exploit for Race condition in Windows and Windows Server
Windows
15h ago

Vendor Spotlight - Last 7 Days

Linux Foundation

124 bulletins

Red Hat Inc.

89 bulletins

Microsoft

74 bulletins

IBM Corporation

53 bulletins

F5 Networks

25 bulletins