Vulnerability Database

12-Month Intensity

Security bulletin trends by severity

0 1000 2000 3000 4000 May 25 Jun 25 Jul 25 Aug 25 Sep 25 Oct 25 Nov 25 Dec 25 Jan Feb Mar Apr

CVSSv4 Base Score Distribution

Vulnerabilities by severity score for the past 7 days

9.0-10 7.0-8.9 4.0-6.9 0.1-3.9 0 500 1000 1500 2000

Attack Vector

Breakdown by attack vectors for the past 7 days

Remote Adjecent Local Physical

Latest Vulnerability Database Updates

Security Bulletins

View All
SB2026052058
High

Improper Authentication in Kavita
Patched
18m ago
SB2026052057
High

Multiple vulnerabilities in Red Hat OpenShift Container Platform 4.18 packages
Patched
22m ago
SB2026052056
Medium

Multiple vulnerabilities in Unbound
Patched
22m ago
SB2026052055
High

Remote code execution in NGINX ngx_http_js_module
Patched
1h ago
SB2026052054
Medium

Platform Navigator and Automation Assets in IBM Cloud Pak for Integration update for Axios
Patched
1h ago
SB2026052053
High

Fedora 44 update for pgadmin4
Patched
1h ago
SB2026052052
High

Fedora 42 update for pgadmin4
Patched
1h ago
SB2026052051
High

Fedora 43 update for pgadmin4
Patched
1h ago
SB2026052050
Low

Multiple vulnerabilities in TinyMCE
Patched
1h ago
SB2026052049
Low

Cross-site scripting in TinyMCE
Patched
1h ago

Zero-Days

View All
#VU131560
Patch pending

Stored cross-site scripting in Microsoft Exchange Server
CVE-2026-42897
5d ago
#VU131450

Improper authentication in Catalyst SD-WAN Controller (formerly SD-WAN vSmart)
CVE-2026-20182
5d ago
#VU130638

Input validation error in Endpoint Manager Mobile (formerly MobileIron Core)
CVE-2026-6973
1w ago
#VU130262

Embedded malicious code (backdoor) in Daemon Tools
CVE-ID: N/A
1w ago
#VU130217

Out-of-bounds write in Palo Alto PAN-OS
CVE-2026-0300
2w ago
#VU128557

Improper authentication in cPanel
CVE-2026-41940
2w ago
#VU126820

Missing Authentication for Critical Function in Oracle Identity Manager Connector
CVE-2026-21992
4w ago
#VU126208

Insufficient Granularity of Access Control in Windows Defender
CVE-2026-33825
1mo ago
#VU126005

Input validation error in Microsoft SharePoint Server
CVE-2026-32201
1mo ago
#VU125813

Prototype pollution in Adobe Acrobat
CVE-2026-34621
1mo ago

Exploits

View All
#VU84794
CVE-2023-7102
Metasploit

Exploit for Exposed dangerous method or function in Email Security Gateway (ESG)
Email Security Gateway (ESG)
18h ago
#VU84793
CVE-2023-7101
Metasploit

Exploit for Use of Potentially Dangerous Function in Spreadsheet-ParseExcel
Spreadsheet-ParseExcel
18h ago
#VU128557
CVE-2026-41940
Metasploit

Exploit for Improper authentication in cPanel
cPanel
1d ago
#VU131450
CVE-2026-20182
Metasploit

Exploit for Improper authentication in Cisco Systems, Inc products
Catalyst SD-WAN Manager (formerly SD-WAN vManage)
4d ago
#VU131309
CVE-2026-40369
Github

Exploit for Untrusted Pointer Dereference in Windows and Windows Server
Windows
5d ago
#VU128557
CVE-2026-41940
Github

Exploit for Improper authentication in cPanel
cPanel
5d ago
#VU127228
CVE-2026-27944
Github

Exploit for Missing Authentication for Critical Function in nginx-ui
nginx-ui
5d ago
#VU128557
CVE-2026-41940
Github

Exploit for Improper authentication in cPanel
cPanel
5d ago
#VU127864
CVE-2026-31431
Github

Exploit for Improper control of a resource through its lifetime in Linux kernel
Linux kernel
5d ago

Vendor Spotlight - Last 7 Days

Red Hat Inc.

67 bulletins

IBM Corporation

45 bulletins

Microsoft

44 bulletins

F5 Networks

25 bulletins

Linux Foundation

16 bulletins