Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest

Vulnerabilities published in the last 30 days. Filter by severity, exploit status, or attack vector.

All Critical Actively Exploited Remotely Exploitable
Last Updated Published CVSS Score
Score
Vulnerability
Published
7.5 HIGH
CVE-2026-2517 — Open5GS SMF types.c ogs_gtp2_parse_tft denial of service

A security flaw has been discovered in Open5GS up to 2.7.6. This vulnerability affects the function ogs_gtp2_parse_tft in the library lib/gtp/v2/types.c of the component SMF. Performing a manipulatio…

open5gs | Remote | Denial of Service
Feb 15, 2026 Feb 18, 2026
Feb 15, 2026
Feb 18, 2026
7.3 HIGH
CVE-2026-2516 — Unidocs ezPDF DRM Reader/ezPDF Reader SHFOLDER.dll uncontrolled search path

A vulnerability was identified in Unidocs ezPDF DRM Reader and ezPDF Reader 2.0/3.0.0.4 on 32-bit. This affects an unknown part in the library SHFOLDER.dll. Such manipulation leads to uncontrolled se…

ezpdf_reader | Misconfiguration
Feb 15, 2026 Feb 18, 2026
Feb 15, 2026
Feb 18, 2026
6.4 MEDIUM
CVE-2026-2541 — Micca KE700 Brute-force vulnerability due to low entropy

The Micca KE700 system relies on a 6-bit portion of an identifier for authentication within rolling codes, providing only 64 possible combinations. This low entropy allows an attacker to perform a br…

| Authentication
Feb 15, 2026 Feb 18, 2026
Feb 15, 2026
Feb 18, 2026
8.4 HIGH
CVE-2026-2540 — Micca KE700 Acceptance of previously used rolling codes

The Micca KE700 system contains flawed resynchronization logic and is vulnerable to replay attacks. This attack requires sending two previously captured codes in a specific sequence. As a result, the…

| Authentication
Feb 15, 2026 Feb 18, 2026
Feb 15, 2026
Feb 18, 2026
5.7 MEDIUM
CVE-2026-2539 — Micca KE700 Cleartext transmission of key fob ID

The RF communication protocol in the Micca KE700 car alarm system does not encrypt its data frames. An attacker with a radio interception tool (e.g., SDR) can capture the random number and counters t…

| Cryptography
Feb 15, 2026 Feb 18, 2026
Feb 15, 2026
Feb 18, 2026
6.8 MEDIUM
CVE-2025-32063 — Enabling SSH server on Infotainment ECU

There is a misconfiguration vulnerability inside the Infotainment ECU manufactured by BOSCH. The vulnerability happens during the startup phase of a specific systemd service, and as a result, the fol…

| Misconfiguration
Feb 15, 2026 Feb 18, 2026
Feb 15, 2026
Feb 18, 2026
8.8 HIGH
CVE-2025-32062 — Stack Buffer Overflow leading to RCE in Bluetooth stack of Infotainment ECU

The specific flaw exists within the Bluetooth stack developed by Alps Alpine of the Infotainment ECU manufactured by Bosch. The issue results from the lack of proper boundary validation of user-suppl…

| Memory Corruption
Feb 15, 2026 Feb 18, 2026
Feb 15, 2026
Feb 18, 2026
8.8 HIGH
CVE-2025-32061 — Stack Buffer Overflow leading to RCE in Bluetooth stack of Infotainment ECU

The specific flaw exists within the Bluetooth stack developed by Alps Alpine of the Infotainment ECU manufactured by Bosch. The issue results from the lack of proper boundary validation of user-suppl…

| Memory Corruption
Feb 15, 2026 Feb 18, 2026
Feb 15, 2026
Feb 18, 2026
6.7 MEDIUM
CVE-2025-32060 — Absence of Kernel Module Signature Verification on Linux System of Infotainment ECU

The system suffers from the absence of a kernel module signature verification. If an attacker can execute commands on behalf of root user (due to additional vulnerabilities), then he/she is also able…

| Authentication
Feb 15, 2026 Feb 18, 2026
Feb 15, 2026
Feb 18, 2026
8.8 HIGH
CVE-2025-32059 — Stack Buffer Overflow leading to RCE in Bluetooth stack of Infotainment ECU

The specific flaw exists within the Bluetooth stack developed by Alps Alpine of the Infotainment ECU manufactured by Bosch. The issue results from the lack of proper boundary validation of user-suppl…

| Memory Corruption
Feb 15, 2026 Feb 18, 2026
Feb 15, 2026
Feb 18, 2026
9.3 CRITICAL
CVE-2025-32058 — Stack Overflow in processing requests over INC interface on RH850 side of Infotainment ECU

The Infotainment ECU manufactured by Bosch uses a RH850 module for CAN communication. RH850 is connected to infotainment over the INC interface through a custom protocol. There is a vulnerability dur…

| Injection
Feb 15, 2026 Feb 18, 2026
Feb 15, 2026
Feb 18, 2026
6.5 MEDIUM
CVE-2026-1793 — Element Pack Addons for Elementor <= 8.3.17 - Authenticated (Contributor+) Arbitrary File…

The Element Pack Addons for Elementor plugin for WordPress is vulnerable to arbitrary file reads in all versions up to, and including, 8.3.17 via the SVG widget and a lack of sufficient file validati…

Remote | Path Traversal
Feb 15, 2026 Feb 18, 2026
Feb 15, 2026
Feb 18, 2026
8.8 HIGH
CVE-2026-1750 — Ecwid by Lightspeed Ecommerce Shopping Cart <= 7.0.7 - Authenticated (Subscriber+) Privil…

The Ecwid by Lightspeed Ecommerce Shopping Cart plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 7.0.7. This is due to a missing capability check in th…

ecwid_ecommerce_shopping_cart | Remote | Authorization
Feb 15, 2026 Feb 18, 2026
Feb 15, 2026
Feb 18, 2026
9.8 CRITICAL
CVE-2026-1490 — Spam protection, Honeypot, Anti-Spam by CleanTalk <= 6.71 - Authorization Bypass via Reve…

The Spam protection, Anti-Spam, FireWall by CleanTalk plugin for WordPress is vulnerable to unauthorized Arbitrary Plugin Installation due to an authorization bypass via reverse DNS (PTR record) spoo…

Remote | Authorization
Feb 15, 2026 Feb 18, 2026
Feb 15, 2026
Feb 18, 2026
0.0 NA
CVE-2026-23210 — ice: Fix PTP NULL pointer dereference during VSI rebuild

In the Linux kernel, the following vulnerability has been resolved: ice: Fix PTP NULL pointer dereference during VSI rebuild Fix race condition where PTP periodic work runs while VSI is being rebui…

linux_kernel | Race Condition
Feb 14, 2026 Feb 18, 2026
Feb 14, 2026
Feb 18, 2026
0.0 NA
CVE-2026-23209 — macvlan: fix error recovery in macvlan_common_newlink()

In the Linux kernel, the following vulnerability has been resolved: macvlan: fix error recovery in macvlan_common_newlink() valis provided a nice repro to crash the kernel: ip link add p1 type vet…

linux_kernel | Memory Corruption
Feb 14, 2026 Feb 18, 2026
Feb 14, 2026
Feb 18, 2026
0.0 NA
CVE-2026-23208 — ALSA: usb-audio: Prevent excessive number of frames

In the Linux kernel, the following vulnerability has been resolved: ALSA: usb-audio: Prevent excessive number of frames In this case, the user constructed the parameters with maxpacksize 40 for rat…

linux_kernel | Memory Corruption
Feb 14, 2026 Feb 18, 2026
Feb 14, 2026
Feb 18, 2026
0.0 NA
CVE-2026-23207 — spi: tegra210-quad: Protect curr_xfer check in IRQ handler

In the Linux kernel, the following vulnerability has been resolved: spi: tegra210-quad: Protect curr_xfer check in IRQ handler Now that all other accesses to curr_xfer are done under the lock, prot…

linux_kernel | Race Condition
Feb 14, 2026 Feb 18, 2026
Feb 14, 2026
Feb 18, 2026
0.0 NA
CVE-2026-23206 — dpaa2-switch: prevent ZERO_SIZE_PTR dereference when num_ifs is zero

In the Linux kernel, the following vulnerability has been resolved: dpaa2-switch: prevent ZERO_SIZE_PTR dereference when num_ifs is zero The driver allocates arrays for ports, FDBs, and filter bloc…

linux_kernel | Memory Corruption
Feb 14, 2026 Feb 18, 2026
Feb 14, 2026
Feb 18, 2026
0.0 NA
CVE-2026-23205 — smb/client: fix memory leak in smb2_open_file()

In the Linux kernel, the following vulnerability has been resolved: smb/client: fix memory leak in smb2_open_file() Reproducer: 1. server: directories are exported read-only 2. client: mount -…

linux_kernel | Memory Corruption
Feb 14, 2026 Feb 18, 2026
Feb 14, 2026
Feb 18, 2026
Showing 20 of 5046 Results