Vulnerability Database

12-Month Intensity

Security bulletin trends by severity

0 1000 2000 3000 4000 Jun 25 Jul 25 Aug 25 Sep 25 Oct 25 Nov 25 Dec 25 Jan Feb Mar Apr May

CVSSv4 Base Score Distribution

Vulnerabilities by severity score for the past 7 days

9.0-10 7.0-8.9 4.0-6.9 0.1-3.9 0 500 1000 1500 2000

Attack Vector

Breakdown by attack vectors for the past 7 days

Remote Adjecent Local Physical

Latest Vulnerability Database Updates

Security Bulletins

View All
SB2026062455
High

Improper Authorization in Red Hat OpenShift Container Platform 4.18 packages
Patched
23m ago
SB2026062454
High

Multiple vulnerabilities in Red Hat OpenShift Container Platform 4.18
Patched
23m ago
SB2026062453
Low

Multiple vulnerabilities in Squid
Patched
29m ago
SB2026062452
Medium

SUSE update for the Linux Kernel (Live Patch 72 for SUSE Linux Enterprise 12 SP5)
Patched
1h ago
SB2026062451
Medium

SUSE update for the Linux Kernel (Live Patch 38 for SUSE Linux Enterprise 15 SP5)
Patched
1h ago
SB2026062450
Critical

Red Hat Enterprise Linux 8 update for the nginx:1.24 module
Patched
1h ago
SB2026062449
Medium

Debian update for python-urllib3
Patched
1h ago
SB2026062448
Medium

Debian update for squid
Patched
1h ago
SB2026062447
Low

Multiple vulnerabilities in IBM WebSphere Application Server
Patched
1h ago
SB2026062446
Low

Deserialization of untrusted data in IBM WebSphere Application Server
Patched
2h ago

Zero-Days

View All
#VU134649

Improper access control in LiteSpeed User-End cPanel Plugin
CVE-2026-54420
1w ago
#VU134581

Path traversal in Catalyst SD-WAN Manager (formerly SD-WAN vManage)
CVE-2026-20262
1w ago
#VU134383

Input validation error in PeopleSoft Enterprise PeopleTools
CVE-2026-35273
1w ago
#VU134153

Improper handling of exceptional conditions in Serv-U FTP Server
CVE-2026-28318
2w ago
#VU134147
Patch pending

Incomplete Comparison with Missing Factors in Arista Extensible Operating System (EOS)
CVE-2026-7473
2w ago
#VU134144

Improper authentication in Gaia
CVE-2026-50751
2w ago
#VU133930

Buffer overflow in Google Chrome
CVE-2026-1164
2w ago
#VU133402
Patch pending

Improper Encoding or Escaping of Output in Catalyst SD-WAN Manager (formerly SD-WAN vManage)
CVE-2026-20245
2w ago
#VU133164

Improper input validation in Google Android
CVE-2025-48595
3w ago
#VU132780

Embedded malicious code in arktype-adapter
CVE-2026-45321
3w ago

Exploits

View All
#VU135120
Other

Exploit for Cross-site scripting in ChurchCRM
ChurchCRM
2h ago
#VU126618
CVE-2026-42208
Metasploit

Exploit for SQL injection in LiteLLM
LiteLLM
15h ago
#VU105939
CVE-2025-29927
Metasploit

Exploit for Improper authorization in Next.js
Next.js
16h ago
#VU129550
CVE-2026-23918
Github

Exploit for Double free in Apache HTTP Server
Apache HTTP Server
1d ago
#VU131312
CVE-2026-41089
Github

Exploit for Stack-based buffer overflow in Windows Server
Windows Server
1d ago
#VU131377
CVE-2026-42945
Github

Exploit for Heap-based buffer overflow in NGINX Open Source and NGINX Plus
NGINX Open Source
1d ago
#VU119103
CVE-2025-55182
Github

Exploit for Deserialization of untrusted data in React
React
1d ago
#VU134649
CVE-2026-54420
Github

Exploit for Improper access control in LiteSpeed User-End cPanel Plugin and LiteSpeed WHM Plugin
LiteSpeed User-End cPanel Plugin
1d ago
#VU114554
CVE-2025-57819
Github

Exploit for SQL injection in FreePBX
FreePBX
1d ago

Vendor Spotlight - Last 7 Days

Red Hat Inc.

80 bulletins

IBM Corporation

60 bulletins

Microsoft

10 bulletins

Linux Foundation

4 bulletins

nVidia

3 bulletins