Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
CVE Intelligence

Vulnerabilities published in the last 30 days. Filter by severity, exploit status, or attack vector.

All Critical Actively Exploited Remotely Exploitable
Last Updated Published CVSS Score
Score
Vulnerability
Published
10.0 HIGH
CVE-2026-3301 — Totolink N300RH Web Management cstecgi.cgi setWebWlanIdx os command injection

A security flaw has been discovered in Totolink N300RH 6.1c.1353_B20190305. Affected by this vulnerability is the function setWebWlanIdx of the file /cgi-bin/cstecgi.cgi of the component Web Manageme…

n300rh_firmware n300rh | Remote | Injection
Feb 27, 2026 Feb 27, 2026
Feb 27, 2026
Feb 27, 2026
5.5 MEDIUM
CVE-2026-3293 — snowflakedb snowflake-jdbc JDBC URL SdkProxyRoutePlanner.java SdkProxyRoutePlanner redos

A weakness has been identified in snowflakedb snowflake-jdbc up to 4.0.1. Impacted is the function SdkProxyRoutePlanner of the file src/main/java/net/snowflake/client/internal/core/SdkProxyRoutePlann…

snowflake_jdbc | Denial of Service
Feb 27, 2026 Mar 02, 2026
Feb 27, 2026
Mar 02, 2026
7.8 HIGH
CVE-2026-28372 — Telnetd in GNU inetutils Privilege Escalation Vulnerability

telnetd in GNU inetutils through 2.7 allows privilege escalation that can be exploited by abusing systemd service credentials support added to the login(1) implementation of util-linux in release 2.4…

inetutils | Authentication
Feb 27, 2026 Mar 07, 2026
Feb 27, 2026
Mar 07, 2026
6.7 MEDIUM
CVE-2026-27653 — Soliton Systems K.K. Installer Default Permission Vulnerability (Elevation of Privilege)

The installers for multiple products provided by Soliton Systems K.K. contain an issue with incorrect default permissions, which may allow arbitrary code to be executed with SYSTEM privileges.

securebrowser_for_onegate securebrowser_ii secureworkspace | Misconfiguration
Feb 27, 2026 Mar 17, 2026
Feb 27, 2026
Mar 17, 2026
Showing 20 of 5944 Results