Vulnerability Database

12-Month Intensity

Security bulletin trends by severity

0 1000 2000 3000 4000 Jun 25 Jul 25 Aug 25 Sep 25 Oct 25 Nov 25 Dec 25 Jan Feb Mar Apr May

CVSSv4 Base Score Distribution

Vulnerabilities by severity score for the past 7 days

9.0-10 7.0-8.9 4.0-6.9 0.1-3.9 0 200 400 600 800

Attack Vector

Breakdown by attack vectors for the past 7 days

Remote Adjecent Local Physical

Latest Vulnerability Database Updates

Security Bulletins

View All
SB2026061531
Medium

Red Hat Enterprise Linux 8 update for the redis:6 module
Patched
2h ago
SB2026061530
High

Multiple vulnerabilities in FreeRDP
Patched
3h ago
SB2026061529
High

Red Hat Enterprise Linux 9 update for samba
Patched
3h ago
SB2026061528
High

Remote code execution in Microsoft Nuance PowerScribe
Patched
5h ago
SB2026061527
High

Multiple vulnerabilities in Microsoft Office
Patched
5h ago
SB2026061526
High

Multiple vulnerabilities in IBM Guardium Key Lifecycle Manager (SKLM/GKLM)
Patched
6h ago
SB2026061525
High

Deserialization of untrusted data in IBM Guardium Key Lifecycle Manager (SKLM/GKLM)
Patched
6h ago
SB2026061524
Medium

IBM Guardium Key Lifecycle Manager update for dojo library
Patched
6h ago
SB2026061523
Medium

IBM Sterling B2B Integrator and IBM Sterling File Gateway update for Spring Cloud
Patched
6h ago
SB2026061522
Medium

Multiple vulnerabilities in IBM Sterling B2B Integrator and IBM Sterling File Gateway
Patched
6h ago

Zero-Days

View All
#VU134383

Input validation error in PeopleSoft Enterprise PeopleTools
CVE-2026-35273
3d ago
#VU134153

Improper handling of exceptional conditions in Serv-U FTP Server
CVE-2026-28318
5d ago
#VU134147
Patch pending

Incomplete Comparison with Missing Factors in Arista Extensible Operating System (EOS)
CVE-2026-7473
5d ago
#VU134144

Improper authentication in Gaia
CVE-2026-50751
5d ago
#VU133930

Buffer overflow in Google Chrome
CVE-2026-1164
6d ago
#VU133402
Patch pending

Improper Encoding or Escaping of Output in Catalyst SD-WAN Manager (formerly SD-WAN vManage)
CVE-2026-20245
1w ago
#VU133164

Improper input validation in Google Android
CVE-2025-48595
1w ago
#VU132780

Embedded malicious code in arktype-adapter
CVE-2026-45321
2w ago
#VU132671

Embedded malicious code in Nx Console VSCode Extension
CVE-2026-48027
2w ago
#VU132313

Use of hard-coded credentials in KnowledgeDeliver
CVE-2026-5426
2w ago

Exploits

View All
#VU133475
Other

Exploit for Heap-based buffer overflow in SAIL
SAIL
1w ago
#VU133462
Other

Exploit for Heap-based buffer overflow in SAIL
SAIL
1w ago
#VU133421
Other

Exploit for Stored cross-site scripting in AVideo
AVideo
1w ago
#VU133403
Other

Exploit for Time-of-check Time-of-use (TOCTOU) Race Condition in Notepad++
Notepad++
1w ago
#VU133361
Other

Exploit for Authorization bypass through user-controlled key in ZoneMinder
ZoneMinder
1w ago
#VU133304
Other

Exploit for Code Injection in Craft CMS
Craft CMS
1w ago
#VU132756
CVE-2026-44490
Other

Exploit for Prototype pollution in axios
axios
2w ago
#VU132755
CVE-2026-44492
Other

Exploit for Server-Side Request Forgery (SSRF) in axios
axios
2w ago
#VU132751
CVE-2026-44489
Other

Exploit for Prototype pollution in axios
axios
2w ago

Vendor Spotlight - Last 7 Days

Microsoft

85 bulletins

Red Hat Inc.

63 bulletins

Linux Foundation

63 bulletins

IBM Corporation

56 bulletins

SAP

4 bulletins