Latest CVE Vulnerabilities

8.1 HIGH

CVE-2025-48723 — Qsync Central

A buffer overflow vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, they can then exploit the vulnerability to modify memory or crash processes. We …

qsync_central | Remote | Memory Corruption

Feb 11, 2026 Feb 11, 2026

Feb 11, 2026

6.5 MEDIUM

CVE-2025-48722 — Qsync Central

A NULL pointer dereference vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, they can then exploit the vulnerability to launch a denial-of-service (D…

qsync_central | Remote | Denial of Service

Feb 11, 2026 Feb 11, 2026

Feb 11, 2026

6.5 MEDIUM

CVE-2025-47209 — Qsync Central

A NULL pointer dereference vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, they can then exploit the vulnerability to launch a denial-of-service (D…

qsync_central | Remote | Memory Corruption

Feb 11, 2026 Feb 11, 2026

Feb 11, 2026

5.1 MEDIUM

CVE-2025-47205 — QTS, QuTS hero

A NULL pointer dereference vulnerability has been reported to affect several QNAP operating system versions. If a remote attacker gains an administrator account, they can then exploit the vulnerabili…

quts_hero qts | Remote | Denial of Service

Feb 11, 2026 Feb 27, 2026

Feb 11, 2026

Feb 27, 2026

8.8 HIGH

CVE-2025-30276 — Qsync Central

An out-of-bounds write vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, they can then exploit the vulnerability to modify or corrupt memory. We hav…

qsync_central | Remote | Memory Corruption

Feb 11, 2026 Feb 11, 2026

Feb 11, 2026

8.1 HIGH

CVE-2025-30269 — Qsync Central

A use of externally-controlled format string vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, they can then exploit the vulnerability to obtain secr…

qsync_central | Remote | Injection

Feb 11, 2026 Feb 11, 2026

Feb 11, 2026

6.5 MEDIUM

CVE-2025-30266 — Qsync Central

A NULL pointer dereference vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, they can then exploit the vulnerability to launch a denial-of-service (D…

qsync_central | Remote | Memory Corruption

Feb 11, 2026 Feb 11, 2026

Feb 11, 2026

7.8 HIGH

CVE-2024-56808 — Media Streaming add-on

A command injection vulnerability has been reported to affect Media Streaming add-on. If an attacker gains local network access who have also gained a user account, they can then exploit the vulnerab…

media_streaming_add-on | Injection

Feb 11, 2026 Feb 12, 2026

Feb 11, 2026

Feb 12, 2026

5.5 MEDIUM

CVE-2024-56807 — Media Streaming add-on

An out-of-bounds read vulnerability has been reported to affect Media Streaming add-on. If an attacker gains local network access, they can then exploit the vulnerability to obtain secret data. We h…

media_streaming_add-on | Information Disclosure

Feb 11, 2026 Feb 12, 2026

Feb 11, 2026

Feb 12, 2026

7.5 HIGH

CVE-2026-1458 — Allocation of Resources Without Limits or Throttling in GitLab

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 8.0 before 18.6.6, 18.7 before 18.7.4, and 18.8 before 18.8.4 that, under certain conditions could have allowed an unauthent…

gitlab | Remote | Denial of Service

Feb 11, 2026 Feb 12, 2026

Feb 11, 2026

Feb 12, 2026

7.5 HIGH

CVE-2026-1456 — Allocation of Resources Without Limits or Throttling in GitLab

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.7 before 18.7.4, and 18.8 before 18.8.4 that could have allowed an unauthenticated user to cause denial of service throug…

gitlab | Remote | Denial of Service

Feb 11, 2026 Feb 12, 2026

Feb 11, 2026

Feb 12, 2026

6.5 MEDIUM

CVE-2026-1387 — Allocation of Resources Without Limits or Throttling in GitLab

GitLab has remediated an issue in GitLab EE affecting all versions from 15.6 before 18.6.6, 18.7 before 18.7.4, and 18.8 before 18.8.4 that could have allowed an authenticated user to cause Denial of…

gitlab | Remote | Denial of Service

Feb 11, 2026 Feb 12, 2026

Feb 11, 2026

Feb 12, 2026

5.4 MEDIUM

CVE-2026-1282 — Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) in GitLab

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.6 before 18.6.6, 18.7 before 18.7.4, and 18.8 before 18.8.4 that could have allowed an authenticated user to inject malic…

gitlab | Remote | Injection

Feb 11, 2026 Feb 12, 2026

Feb 11, 2026

Feb 12, 2026

4.6 MEDIUM

CVE-2026-1094 — Improper Validation of Unsafe Equivalence in Input in GitLab

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.8 before 18.8.4 that could have allowed an authenticated developer to hide specially crafted file changes from the WebUI.

gitlab gitaly | Remote | Information Disclosure

Feb 11, 2026 Feb 12, 2026

Feb 11, 2026

Feb 12, 2026

4.3 MEDIUM

CVE-2026-1080 — Authorization Bypass Through User-Controlled Key in GitLab

GitLab has remediated an issue in GitLab EE affecting all versions from 16.7 before 18.6.6, 18.7 before 18.7.4, and 18.8 before 18.8.4 that, under certain conditions could have allowed an authenticat…

gitlab | Remote | Authorization

Feb 11, 2026 Feb 12, 2026

Feb 11, 2026

Feb 12, 2026

7.5 HIGH

CVE-2026-0958 — Interpretation Conflict in GitLab

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.4 before 18.6.6, 18.7 before 18.7.4, and 18.8 before 18.8.4 that could have allowed an unauthenticated user to cause deni…

gitlab | Remote | Denial of Service

Feb 11, 2026 Feb 13, 2026

Feb 11, 2026

Feb 13, 2026

7.3 HIGH

CVE-2026-0595 — Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in G…

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 13.9 before 18.6.6, 18.7 before 18.7.4, and 18.8 before 18.8.4 that, under certain conditions could have allowed an authenti…

gitlab | Remote | Cross-Site Scripting

Feb 11, 2026 Feb 12, 2026

Feb 11, 2026

Feb 12, 2026

7.5 HIGH

CVE-2025-8099 — Allocation of Resources Without Limits or Throttling in GitLab

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 10.8 before 18.6.6, 18.7 before 18.7.4, and 18.8 before 18.8.4 that, under certain conditions, could have allowed an unauthe…

gitlab | Remote | Denial of Service

Feb 11, 2026 Feb 13, 2026

Feb 11, 2026

Feb 13, 2026

9.1 CRITICAL

CVE-2025-7659 — Origin Validation Error in GitLab

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.2 before 18.6.6, 18.7 before 18.7.4, and 18.8 before 18.8.4 that could have allowed an unauthenticated user to steal toke…

gitlab | Remote | Authorization

Feb 11, 2026 Feb 13, 2026

Feb 11, 2026

Feb 13, 2026

3.5 LOW

CVE-2025-14594 — Authorization Bypass Through User-Controlled Key in GitLab

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 17.11 before 18.6.6, 18.7 before 18.7.4, and 18.8 before 18.8.4 that, under certain conditions could have allowed an authent…

gitlab | Remote | Information Disclosure

Feb 11, 2026 Feb 13, 2026

Feb 11, 2026

Feb 13, 2026

Latest CVE Feed

CVEFeed.io UI Customizer

Layout

Vertical

Horizontal

Two Column

Color Scheme

Light

Dark

Layout Width

Fluid

Boxed

Layout Position

Topbar Color

Light

Dark

Sidebar Size

Default

Compact

Small (Icon View)

Small Hover View

Sidebar View

Default

Detached

Sidebar Color

Light

Dark

Gradient

Preloader

Enable

Disable

Browse by Apps

Latest CVE Feed

CVEFeed.io UI Customizer

Layout

Vertical

Horizontal

Two Column

Color Scheme

Light

Dark

Layout Width

Fluid

Boxed

Layout Position

Topbar Color

Light

Dark

Sidebar Size

Default

Compact

Small (Icon View)

Small Hover View

Sidebar View

Default

Detached

Sidebar Color

Light

Dark

Gradient

Preloader

Enable

Disable

Cookie Preferences