Vulnerability Database

12-Month Intensity

Security bulletin trends by severity

0 1000 2000 3000 4000 Jun 25 Jul 25 Aug 25 Sep 25 Oct 25 Nov 25 Dec 25 Jan Feb Mar Apr May

CVSSv4 Base Score Distribution

Vulnerabilities by severity score for the past 7 days

9.0-10 7.0-8.9 4.0-6.9 0.1-3.9 0 500 1000 1500 2000

Attack Vector

Breakdown by attack vectors for the past 7 days

Remote Adjecent Local Physical

Latest Vulnerability Database Updates

Security Bulletins

View All
SB2026060601
Medium

Fedora EPEL 10.2 update for dnsdist
Patched
5h ago
SB2026060575
Medium

SUSE update for bind
Patched
11h ago
SB2026060574
High

SUSE update for evince
Patched Public exploit
11h ago
SB2026060573
Medium

SUSE update for jq
Patched Public exploit
11h ago
SB2026060572
Medium

SUSE update for unbound
Patched
11h ago
SB2026060571
Low

Fedora 44 update for python-django5
Patched
12h ago
SB2026060570
Low

Fedora 43 update for python-django5
Patched
12h ago
SB2026060569
Medium

openEuler 20.03 LTS SP4 update for python-pip
Patched
14h ago
SB2026060568
Medium

openEuler 22.03 LTS SP4 update for python-pip
Patched
14h ago
SB2026060567
Low

openEuler 24.03 LTS SP1 update for opensc
Patched
15h ago

Zero-Days

View All
#VU133164

Improper input validation in Google Android
CVE-2025-48595
4d ago
#VU132780

Embedded malicious code in arktype-adapter
CVE-2026-45321
1w ago
#VU132671

Embedded malicious code in Nx Console VSCode Extension
CVE-2026-48027
1w ago
#VU132313

Use of hard-coded credentials in KnowledgeDeliver
CVE-2026-5426
1w ago
#VU132249

Incorrect Privilege Assignment in LiteSpeed User-End cPanel Plugin
CVE-2026-48172
1w ago
#VU132106

Relative Path Traversal in Apex One
CVE-2026-34926
2w ago
#VU132036

Input validation error in Windows Defender
CVE-2026-45498
2w ago
#VU132035

Link following in Microsoft Malware Protection Engine
CVE-2026-41091
2w ago
#VU131560
Patch pending

Stored cross-site scripting in Microsoft Exchange Server
CVE-2026-42897
3w ago
#VU131450

Improper authentication in Catalyst SD-WAN Controller (formerly SD-WAN vSmart)
CVE-2026-20182
3w ago

Exploits

View All
#VU133421
Other

Exploit for Stored cross-site scripting in AVideo
AVideo
1d ago
#VU133403
Other

Exploit for Time-of-check Time-of-use (TOCTOU) Race Condition in Notepad++
Notepad++
1d ago
#VU133361
Other

Exploit for Authorization bypass through user-controlled key in ZoneMinder
ZoneMinder
1d ago
#VU133304
Other

Exploit for Code Injection in Craft CMS
Craft CMS
2d ago
#VU132756
CVE-2026-44490
Other

Exploit for Prototype pollution in axios
axios
1w ago
#VU132755
CVE-2026-44492
Other

Exploit for Server-Side Request Forgery (SSRF) in axios
axios
1w ago
#VU132751
CVE-2026-44489
Other

Exploit for Prototype pollution in axios
axios
1w ago
#VU125787
CVE-2026-34197
Metasploit

Exploit for Code Injection in ActiveMQ
ActiveMQ
1w ago
#VU132750
CVE-2026-44494
Other

Exploit for Prototype pollution in axios
axios
1w ago

Vendor Spotlight - Last 7 Days

IBM Corporation

64 bulletins

Red Hat Inc.

54 bulletins

Linux Foundation

36 bulletins

Apache Foundation

6 bulletins

Cisco Systems, Inc

5 bulletins