Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
CVE Intelligence

Vulnerabilities published in the last 30 days. Filter by severity, exploit status, or attack vector.

All Critical Actively Exploited Remotely Exploitable
Last Updated Published CVSS Score
Score
Vulnerability
Published
7.2 HIGH
CVE-2026-3486 — itsourcecode College Management System student-fee.php sql injection

A vulnerability has been found in itsourcecode College Management System 1.0. This vulnerability affects unknown code of the file /admin/student-fee.php. Such manipulation of the argument roll_no lea…

college_management_system | Remote | Injection
Mar 03, 2026 Mar 04, 2026
Mar 03, 2026
Mar 04, 2026
10.0 HIGH
CVE-2026-3485 — D-Link DIR-868L SSDP Service sub_1BF84 os command injection

A flaw has been found in D-Link DIR-868L 110b03. This affects the function sub_1BF84 of the component SSDP Service. This manipulation of the argument ST causes os command injection. It is possible to…

dir-868l_firmware dir-868l | Remote | Injection
Mar 03, 2026 Mar 04, 2026
Mar 03, 2026
Mar 04, 2026
7.8 HIGH
CVE-2026-25906 — Dell Optimizer Elevation of Privileges (Link Following)

Dell Optimizer, versions prior to 6.3.1, contain an Improper Link Resolution Before File Access ('Link Following') vulnerability. A low privileged attacker with local access could potentially exploit…

optimizer | Path Traversal
Mar 03, 2026 Mar 05, 2026
Mar 03, 2026
Mar 05, 2026
8.8 HIGH
CVE-2026-24502 — Dell Command | Intel vPro Out of Band Uncontrolled Search Path Element Elevation of Privi…

Dell Command | Intel vPro Out of Band, versions prior to 4.7.0, contain an Uncontrolled Search Path Element vulnerability. A low privileged attacker with local access could potentially exploit this v…

command_\|_intel_vpro_out_of_band | Path Traversal
Mar 03, 2026 Mar 05, 2026
Mar 03, 2026
Mar 05, 2026
5.5 MEDIUM
CVE-2026-1713 — IBM MQ is affected by an authority vulnerablility

IBM MQ 9.1.0.0 through 9.1.0.33 LTS, 9.2.0.0 through 9.2.0.40 LTS, 9.3.0.0 through 9.3.0.36 LTS, 9.30.0 through 9.3.5.1 CD, 9.4.0.0 through 9.4.0.17 LTS, and 9.4.0.0 through 9.4.4.1 CD

mq
Mar 03, 2026 Mar 05, 2026
Mar 03, 2026
Mar 05, 2026
7.5 HIGH
CVE-2026-1567 — IBM InfoSphere Information Server is affected by an XML external entity injection (XXE) v…

IBM InfoSphere Information Server 11.7.0.0 through 11.7.1.6 An XML External Entity (XXE) vulnerability in IBM InfoSphere Information Server could allow attackers to retrieve sensitive information fro…

infosphere_information_server | Remote | XML External Entity
Mar 03, 2026 Mar 05, 2026
Mar 03, 2026
Mar 05, 2026
9.8 CRITICAL
CVE-2025-70240 — D-Link DIR-513 Stack Buffer Overflow

Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/formSetWAN_Wizard51.

dir-513_firmware dir-513 | Remote | Memory Corruption
Mar 03, 2026 Mar 09, 2026
Mar 03, 2026
Mar 09, 2026
9.8 CRITICAL
CVE-2025-70239 — D-Link DIR-513 Stack Buffer Overflow Vulnerability

Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/formSetWAN_Wizard55.

dir-513_firmware dir-513 | Remote | Memory Corruption
Mar 03, 2026 Mar 09, 2026
Mar 03, 2026
Mar 09, 2026
9.8 CRITICAL
CVE-2025-70234 — D-Link DIR-513 Stack Buffer Overflow Vulnerability

Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/formSetQoS.

dir-513_firmware dir-513 | Remote | Memory Corruption
Mar 03, 2026 Mar 09, 2026
Mar 03, 2026
Mar 09, 2026
7.5 HIGH
CVE-2025-14480 — IBM Aspera faspio Gateway 1.3.7 has addressed a vulnerability affected by weak cryptograp…

IBM Aspera faspio Gateway 1.3.6 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information

aspera_faspio_gateway | Remote | Cryptography
Mar 03, 2026 Mar 05, 2026
Mar 03, 2026
Mar 05, 2026
5.9 MEDIUM
CVE-2025-14456 — IBM MQ Appliance uses weaker than expected cryptographic algorithms

IBM MQ Appliance 9.4 CD through 9.4.4.0 to 9.4.4.1

mq_appliance | Remote | Misconfiguration
Mar 03, 2026 Mar 05, 2026
Mar 03, 2026
Mar 05, 2026
8.8 HIGH
CVE-2025-13688 — DataStage on Cloud Pak for Data is vulnerable to arbitrary code injection due to runtime …

IBM DataStage on Cloud Pak for Data 5.1.2 through 5.3.0 could allow an authenticated user to execute arbitrary commands with normal user privileges on the system due to improper validation of user su…

datastage_on_cloud_pak_for_data | Remote | Injection
Mar 03, 2026 Mar 04, 2026
Mar 03, 2026
Mar 04, 2026
8.8 HIGH
CVE-2025-13687 — DataStage on Cloud Pak for Data is vulnerable to arbitrary code injection due to runtime …

IBM DataStage on Cloud Pak for Data 5.1.2 through 5.3.0 could allow an authenticated user to execute arbitrary commands with normal user privileges on the system due to improper validation of user su…

datastage_on_cloud_pak_for_data | Remote | Injection
Mar 03, 2026 Mar 04, 2026
Mar 03, 2026
Mar 04, 2026
8.8 HIGH
CVE-2025-13686 — DataStage on Cloud Pak for Data is vulnerable to arbitrary code injection due to runtime …

IBM DataStage on Cloud Pak for Data 5.1.2 through 5.3.0 could allow an authenticated user to execute arbitrary commands with normal user privileges on the system due to improper validation of user su…

datastage_on_cloud_pak_for_data | Remote | Injection
Mar 03, 2026 Mar 04, 2026
Mar 03, 2026
Mar 04, 2026
Showing 20 of 6394 Results