Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
CVE Intelligence

Vulnerabilities published in the last 30 days. Filter by severity, exploit status, or attack vector.

All Critical Actively Exploited Remotely Exploitable
Last Updated Published CVSS Score
Score
Vulnerability
Published
8.8 HIGH
CVE-2026-3910 — Google Chromium V8 Improper Restriction of Operations Within the Bounds of a Memory Buffe…

Inappropriate implementation in V8 in Google Chrome prior to 146.0.7680.75 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: H…

linux_kernel chrome macos windows | CISA KEV Remote | Memory Corruption
Mar 13, 2026 Mar 13, 2026
Mar 13, 2026
Mar 13, 2026
8.8 HIGH
CVE-2026-3909 — Google Skia Out-of-Bounds Write Vulnerability - [Actively Exploited]

Out of bounds write in Skia in Google Chrome prior to 146.0.7680.75 allowed a remote attacker to perform out of bounds memory access via a crafted HTML page. (Chromium security severity: High)

linux_kernel chrome macos windows | CISA KEV Remote | Memory Corruption
Mar 13, 2026 Mar 13, 2026
Mar 13, 2026
Mar 13, 2026
7.8 HIGH
CVE-2026-21385 — Qualcomm Multiple Chipsets Memory Corruption Vulnerability - [Actively Exploited]

Memory corruption while using alignments for memory allocation.

qam8295p_firmware qca6391_firmware qca6574au_firmware qca6595au_firmware qca6696_firmware sa6145p_firmware +470 more | CISA KEV | Memory Corruption
Mar 02, 2026 Mar 04, 2026
Mar 02, 2026
Mar 04, 2026
8.1 HIGH
CVE-2026-22719 — Broadcom VMware Aria Operations Command Injection Vulnerability - [Actively Exploited]

VMware Aria Operations contains a command injection vulnerability. A malicious unauthenticated actor may exploit this issue to execute arbitrary commands which may lead to remote code execution in VM…

cloud_foundation aria_operations telco_cloud_platform telco_cloud_infrastructure | CISA KEV Remote | Injection
Feb 25, 2026 Mar 04, 2026
Feb 25, 2026
Mar 04, 2026
10.0 CRITICAL
CVE-2026-20127 — Cisco Catalyst SD-WAN Controller and Manager Authentication Bypass Vulnerability - [Activ…

A vulnerability in the peering authentication in Cisco Catalyst SD-WAN Controller, formerly SD-WAN vSmart, and Cisco Catalyst SD-WAN Manager, formerly SD-WAN vManage, could allow an unauthenticated, …

catalyst_sd-wan_manager sd-wan_vsmart_controller | CISA KEV Remote | Authentication
Feb 25, 2026 Feb 26, 2026
Feb 25, 2026
Feb 26, 2026
10.0 CRITICAL
CVE-2026-22769 — Dell RecoverPoint for Virtual Machines (RP4VMs) Use of Hard-coded Credentials Vulnerabili…

Dell RecoverPoint for Virtual Machines, versions prior to 6.0.3.1 HF1, contain a hardcoded credential vulnerability. This is considered critical as an unauthenticated remote attacker with knowledge o…

recoverpoint_for_virtual_machines | CISA KEV Remote | Authentication
Feb 17, 2026 Feb 18, 2026
Feb 17, 2026
Feb 18, 2026
Showing 20 of 6 Results