Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
CVE Intelligence

Vulnerabilities published in the last 30 days. Filter by severity, exploit status, or attack vector.

All Critical Actively Exploited Remotely Exploitable
Last Updated Published CVSS Score
Score
Vulnerability
Published
5.3 MEDIUM
CVE-2026-42500 — Panic when reading out of bound palette index in golang.org/x/image/bmp

Decoding a paletted BMP file with an out-of-range palette index results in a panic when accessing pixels in the invalid image.

Remote | Memory Corruption
May 29, 2026 Jun 01, 2026
May 29, 2026
Jun 01, 2026
5.3 MEDIUM
CVE-2026-34127 — Stored Cross-Site Scripting (XSS) via Configuration File Import on TP-Link's TL-SG108PE

A stored cross-site scripting (XSS) vulnerability has been identified in the web management interface of TP-Link's TL-SG108PE v5 switch due to improper sanitation of the SYSNAM configuration paramete…

tl-sg108pe_firmware tl-sg108pe | Cross-Site Scripting
May 29, 2026 Jun 01, 2026
May 29, 2026
Jun 01, 2026
Showing 20 of 7202 Results