Vulnerability Database

12-Month Intensity

Security bulletin trends by severity

0 1000 2000 3000 4000 May 25 Jun 25 Jul 25 Aug 25 Sep 25 Oct 25 Nov 25 Dec 25 Jan Feb Mar Apr

CVSSv4 Base Score Distribution

Vulnerabilities by severity score for the past 7 days

9.0-10 7.0-8.9 4.0-6.9 0.1-3.9 0 500 1000 1500 2000

Attack Vector

Breakdown by attack vectors for the past 7 days

Remote Adjecent Local Physical

Latest Vulnerability Database Updates

Security Bulletins

View All
SB20260529192
Medium

Out-of-bounds read in Linux kernel sw rxe driver
Patched
1m ago
SB20260529191
Low

Use-after-free in Linux kernel kvm mmu
Patched
3m ago
SB20260529190
Low

Improper locking in Linux kernel hw hns driver
Patched
5m ago
SB20260529189
Low

Use-after-free in Linux kernel bluetooth
Patched
7m ago
SB20260529188
Low

NULL pointer dereference in Linux kernel stmicro stmmac driver
Patched
9m ago
SB20260529187
Low

Memory leak in Linux kernel usb common driver
Patched
11m ago
SB20260529186
Low

Always-Incorrect Control Flow Implementation in Linux kernel char ipmi driver
Patched
13m ago
SB20260529185
Low

Improper update of reference count in Linux kernel md persistent-data driver
Patched
15m ago
SB20260529184
Low

Improper input validation in Linux kernel isofs
Patched
17m ago
SB20260529183
Low

Out-of-bounds read in Linux kernel bluetooth driver
Patched
18m ago

Zero-Days

View All
#VU132780

Embedded malicious code in arktype-adapter
CVE-2026-45321
5h ago
#VU132671

Embedded malicious code in Nx Console VSCode Extension
CVE-2026-48027
1d ago
#VU132313

Use of hard-coded credentials in KnowledgeDeliver
CVE-2026-5426
3d ago
#VU132249

Incorrect Privilege Assignment in LiteSpeed User-End cPanel Plugin
CVE-2026-48172
4d ago
#VU132106

Relative Path Traversal in Apex One
CVE-2026-34926
1w ago
#VU132036

Input validation error in Windows Defender
CVE-2026-45498
1w ago
#VU132035

Link following in Microsoft Malware Protection Engine
CVE-2026-41091
1w ago
#VU131560
Patch pending

Stored cross-site scripting in Microsoft Exchange Server
CVE-2026-42897
2w ago
#VU131450

Improper authentication in Catalyst SD-WAN Controller (formerly SD-WAN vSmart)
CVE-2026-20182
2w ago
#VU130638

Input validation error in Endpoint Manager Mobile (formerly MobileIron Core)
CVE-2026-6973
3w ago

Exploits

View All
#VU132756
CVE-2026-44490
Other

Exploit for Prototype pollution in axios
axios
7h ago
#VU132755
CVE-2026-44492
Other

Exploit for Server-Side Request Forgery (SSRF) in axios
axios
7h ago
#VU132751
CVE-2026-44489
Other

Exploit for Prototype pollution in axios
axios
7h ago
#VU125787
CVE-2026-34197
Metasploit

Exploit for Code Injection in ActiveMQ
ActiveMQ
7h ago
#VU132750
CVE-2026-44494
Other

Exploit for Prototype pollution in axios
axios
9h ago
#VU132370
CVE-2026-42097
Other

Exploit for Authentication bypass using an alternate path or channel in Sparx Pro Cloud Server
Sparx Pro Cloud Server
2d ago
#VU132369
CVE-2026-42096
Other

Exploit for Improper access control in Sparx Pro Cloud Server
Sparx Pro Cloud Server
2d ago
#VU132348
CVE-2026-44705
Other

Exploit for Path traversal in node-tmp
node-tmp
2d ago
#VU132128
CVE-2026-46529
Github

Exploit for Improper Neutralization of Argument Delimiters in a Command in atril
atril
1w ago

Vendor Spotlight - Last 7 Days

Linux Foundation

288 bulletins

Red Hat Inc.

71 bulletins

IBM Corporation

56 bulletins

Adobe

4 bulletins

Trend Micro

1 bulletin