Latest CVE Feed

Vulnerabilities published in the last 30 days. Filter by severity, exploit status, or attack vector.

Score
Vulnerability
Published
7.1 HIGH
CVE-2026-24195 — NVIDIA UVM Denial of Service Vulnerability

NVIDIA Display Driver for Linux contains a vulnerability in UVM, where a user could cause improper input validation. A successful exploit of this vulnerability might lead to denial of service.

| Denial of Service
May 26, 2026 May 26, 2026
May 26, 2026
May 26, 2026
7.8 HIGH
CVE-2026-24194 — NVIDIA Display Driver for Linux Kernel Mode Layer Handler Privilege Escalation

NVIDIA Display Driver for Linux contains a vulnerability in a kernel mode layer handler, where a user could cause improper permission handling. A successful exploit of this vulnerability might lead t…

| Memory Corruption
May 26, 2026 May 26, 2026
May 26, 2026
May 26, 2026
7.8 HIGH
CVE-2026-24193 — NVIDIA Display Driver Denial of Service and Code Execution Vulnerability

NVIDIA Display Driver for Windows and Linux contains a vulnerability where an attacker could cause an out-of-bounds write. A successful exploit of this vulnerability might lead to denial of service, …

| Memory Corruption
May 26, 2026 May 26, 2026
May 26, 2026
May 26, 2026
7.8 HIGH
CVE-2026-24192 — NVIDIA Display Driver for Linux Heap Buffer Overflow

NVIDIA Display Driver for Linux contains a vulnerability where an attacker could cause an incorrect conversion between numeric types, leading to a heap buffer overflow. A successful exploit of this v…

| Memory Corruption
May 26, 2026 May 26, 2026
May 26, 2026
May 26, 2026
7.8 HIGH
CVE-2026-24191 — NVIDIA Display Driver for Windows TOCTOU Vulnerability

NVIDIA Display Driver for Windows contains a vulnerability where an attacker could cause a time-of-check time-of-use issue. A successful exploit of this vulnerability might lead to denial of service,…

| Misconfiguration
May 26, 2026 May 26, 2026
May 26, 2026
May 26, 2026
7.8 HIGH
CVE-2026-24190 — NVIDIA Display Driver Kernel Mode Layer Information Disclosure and Elevation of Privilege…

NVIDIA Display Driver for Windows and Linux contains a vulnerability in the kernel mode layer, where a user could cause improper access to GPU resources. A successful exploit of this vulnerability mi…

| Memory Corruption
May 26, 2026 May 26, 2026
May 26, 2026
May 26, 2026
8.8 HIGH
CVE-2026-24187 — NVIDIA Display Driver for Linux Use-After-Free RCE

NVIDIA Display Driver for Linux contains a vulnerability where an attacker could cause a use-after-free. A successful exploit of this vulnerability might lead to denial of service, escalation of priv…

| Memory Corruption
May 26, 2026 May 26, 2026
May 26, 2026
May 26, 2026
6.5 MEDIUM
CVE-2026-24182 — NVIDIA Display Driver Lock Leaking Denial of Service

NVIDIA Display Driver for Windows and Linux contains a vulnerability where an attacker could leak held driver locks. A successful exploit of this vulnerability might lead to denial of service.

| Denial of Service
May 26, 2026 May 26, 2026
May 26, 2026
May 26, 2026
4.4 MEDIUM
CVE-2025-33221 — NVIDIA Display Driver Kernel Driver Permission Assignment Vulnerability

NVIDIA Display Driver for Windows and Linux contains a vulnerability in the kernel driver, where a user could cause an incorrect permission assignment for a critical resource. A successful exploit of…

| Authorization
May 26, 2026 May 26, 2026
May 26, 2026
May 26, 2026
6.5 MEDIUM
CVE-2026-9565 — haojing8312 WorkClaw Blacklist bash.rs is_dangerous os command injection

A vulnerability was determined in haojing8312 WorkClaw up to 0.6.4. This affects the function is_dangerous of the file apps/runtime/src-tauri/src/agent/tools/bash.rs of the component Blacklist Handle…

Remote | Injection
May 26, 2026 May 26, 2026
May 26, 2026
May 26, 2026
3.3 LOW
CVE-2026-9564 — SourceCodester/oretnom23 Hospitals Patient Records Management System view_patient cross s…

A vulnerability was found in SourceCodester/oretnom23 Hospitals Patient Records Management System 1.0. The impacted element is an unknown function of the file /admin/?page=patients/view_patient. Perf…

Remote | Cross-Site Scripting
May 26, 2026 May 26, 2026
May 26, 2026
May 26, 2026
7.5 HIGH
CVE-2026-9562 — sambitraj STUDENT-MANAGEMENT-SYSTEM Dashboard access control

A vulnerability has been found in sambitraj STUDENT-MANAGEMENT-SYSTEM up to 56ba287f2e9031523ccb4244cb6e3fe530e4e5d5. The affected element is an unknown function of the component Dashboard. Such mani…

Remote | Authorization
May 26, 2026 May 26, 2026
May 26, 2026
May 26, 2026
6.2 MEDIUM
CVE-2026-8852 — IBM HTTP Server is affected by multiple vulnerabilities

IBM HTTP Server 8.5, and 9.0 is vulnerable to denial of service via the optional module mod_fastcgi module.

| Denial of Service
May 26, 2026 May 26, 2026
May 26, 2026
May 26, 2026
7.5 HIGH
CVE-2026-8850 — IBM HTTP Server is affected by multiple vulnerabilities

IBM HTTP Server 8.5, and 9.0 is vulnerable to denial of service via the optional module mod_ibm_upload.

Remote | Denial of Service
May 26, 2026 May 26, 2026
May 26, 2026
May 26, 2026
6.9 MEDIUM
CVE-2026-48905 — Joomla! Framework - [20260520] - Inadequate content filtering within the cleanAttributes …

Lack of input filtering leads to an XSS vector in the HTML filter code.

Remote | Cross-Site Scripting
May 26, 2026 May 26, 2026
May 26, 2026
May 26, 2026
8.2 HIGH
CVE-2026-48904 — Joomla! Core - [20260514] - Privilege escalation through com_users webservice endpoints

An improper access check allows privelege escalation through the com_users group editing webservice endpoint.

Remote | Authorization
May 26, 2026 May 26, 2026
May 26, 2026
May 26, 2026
6.9 MEDIUM
CVE-2026-48903 — Joomla! Framework - [20260519] - Inadequate content filtering within the checkAttribute f…

Inadequate content filtering within the checkAttribute methods leads to XSS vulnerabilities in various components.

Remote | Cross-Site Scripting
May 26, 2026 May 26, 2026
May 26, 2026
May 26, 2026
0.0 NA
CVE-2026-48902 — Joomla! Core - [20260518] - Transport encryption downgrade for password and username rese…

The password and username reset features created plain http links for https connections if the "Force SSL" flag wasn't explicitly set.

| Misconfiguration
May 26, 2026 May 26, 2026
May 26, 2026
May 26, 2026
0.0 NA
CVE-2026-48901 — Joomla! Core - [20260517] - Incorrect Cache Key Construction for InputFilter objects

The InputFilter::getInstance() method omitted a security sensitive parameter from the instance cache key.

| Misconfiguration
May 26, 2026 May 26, 2026
May 26, 2026
May 26, 2026
6.4 MEDIUM
CVE-2026-48900 — Joomla! Core - [20260516] - Incorrect Access Control in com_scheduler

An improper access check allowed low privileged users to edit the task types of existing scheduler tasks.

Remote | Authorization
May 26, 2026 May 26, 2026
May 26, 2026
May 26, 2026
Showing 20 of 6038 Results