Latest CVE Feed
CVE Intelligence
Vulnerabilities published in the last 30 days. Filter by severity, exploit status, or attack vector.
Score
Vulnerability
Published
5.3
MEDIUM
CVE-2026-36438
— Intelbras VIP-1230-D-G4 Information Disclosure Vulnerability
An issue in Intelbras VIP-1230-D-G4 Version V2.800.00IB00C.0.T allows a remote attacker to obtain sensitive information via password reset functionality under /OutsideCmd
Remote
|
Information Disclosure
May 18, 2026
May 19, 2026
May 18, 2026
May 19, 2026
6.5
MEDIUM
CVE-2026-20685
— VMware PCC Path Traversal Information Disclosure
An attacker in a privileged network position may be able to leak sensitive information. A path handling issue was addressed with improved validation. This issue is fixed in PCC Release 5E290.3.
|
Information Disclosure
May 18, 2026
May 18, 2026
May 18, 2026
May 18, 2026
8.8
HIGH
CVE-2025-57282
— Ngrok Command Injection Vulnerability
ngrok v4.3.3 and 5.0.0-beta.2 is vulnerable to Command Injection.
Remote
|
Injection
May 18, 2026
May 18, 2026
May 18, 2026
May 18, 2026
7.5
HIGH
CVE-2025-56352
— TinyMQTT Broker Protocol Violation Leaving File Descriptors Open
In tinyMQTT commit 6226ade15bd4f97be2d196352e64dd10937c1962 (2024-02-18), the broker mishandles protocol violations during CONNECT packet parsing. When receiving a CONNECT packet with a zero-length C…
Remote
|
Denial of Service
May 18, 2026
May 18, 2026
May 18, 2026
May 18, 2026