Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
CVE Intelligence

Vulnerabilities published in the last 30 days. Filter by severity, exploit status, or attack vector.

All Critical Actively Exploited Remotely Exploitable
Last Updated Published CVSS Score
Score
Vulnerability
Published
5.4 MEDIUM
CVE-2026-31352 — Feehi CMS Cross-Site Scripting

An authenticated stored cross-site scripting (XSS) vulnerability in the Role Management module of Feehi CMS v2.1.1 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted pa…

feehi_cms | Remote | Cross-Site Scripting
Apr 06, 2026 Apr 07, 2026
Apr 06, 2026
Apr 07, 2026
4.8 MEDIUM
CVE-2026-31351 — Feehi CMS Stored Cross-Site Scripting (XSS)

An authenticated stored cross-site scripting (XSS) vulnerability in the creation/editing module of Feehi CMS v2.1.1 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted p…

feehi_cms | Remote | Cross-Site Scripting
Apr 06, 2026 Apr 07, 2026
Apr 06, 2026
Apr 07, 2026
5.4 MEDIUM
CVE-2026-31350 — Feehi CMS Stored Cross-Site Scripting Vulnerability

An authenticated stored cross-site scripting (XSS) vulnerability in Feehi CMS v2.1.1 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the Page Sign param…

feehi_cms | Remote | Cross-Site Scripting
Apr 06, 2026 Apr 07, 2026
Apr 06, 2026
Apr 07, 2026
7.8 HIGH
CVE-2026-21382 — Buffer Copy Without Checking Size of Input in Power Management IC

Memory Corruption when handling power management requests with improperly sized input/output buffers.

wcd9380_firmware wcd9385_firmware fastconnect_6900_firmware fastconnect_7800_firmware qca0000_firmware wsa8840_firmware +32 more | Memory Corruption
Apr 06, 2026 Apr 08, 2026
Apr 06, 2026
Apr 08, 2026
7.6 HIGH
CVE-2026-21381 — Buffer Over-read in WLAN Firmware

Transient DOS when receiving a service data frame with excessive length during device matching over a neighborhood awareness network protocol connection.

qca6391_firmware wcd9380_firmware wcd9385_firmware wcn3988_firmware wsa8810_firmware wsa8815_firmware +200 more | Remote | Denial of Service
Apr 06, 2026 Apr 08, 2026
Apr 06, 2026
Apr 08, 2026
7.8 HIGH
CVE-2026-21380 — Use After Free in DSP Service

Memory Corruption when using deprecated DMABUF IOCTL calls to manage video memory.

wcd9380_firmware wcd9385_firmware wsa8830_firmware wsa8835_firmware wsa8832_firmware fastconnect_6900_firmware +40 more | Memory Corruption
Apr 06, 2026 Apr 08, 2026
Apr 06, 2026
Apr 08, 2026
7.8 HIGH
CVE-2026-21378 — Buffer Over-read in Camera

Memory Corruption when accessing an output buffer without validating its size during IOCTL processing in a camera sensor driver.

aqt1000_firmware qca6391_firmware qca6420_firmware qca6430_firmware wcd9341_firmware wcd9380_firmware +96 more | Memory Corruption
Apr 06, 2026 Apr 08, 2026
Apr 06, 2026
Apr 08, 2026
7.8 HIGH
CVE-2026-21376 — Buffer Over-read in Camera

Memory Corruption when accessing an output buffer without validating its size during IOCTL processing in a camera sensor driver.

aqt1000_firmware qca6391_firmware qca6420_firmware qca6430_firmware wcd9341_firmware wcd9380_firmware +102 more | Memory Corruption
Apr 06, 2026 Apr 08, 2026
Apr 06, 2026
Apr 08, 2026
7.8 HIGH
CVE-2026-21375 — Buffer Over-read in Camera

Memory Corruption when accessing an output buffer without validating its size during IOCTL processing.

wcd9380_firmware wcd9385_firmware wcn3988_firmware wsa8830_firmware wsa8835_firmware qcm6490_firmware +64 more | Memory Corruption
Apr 06, 2026 Apr 08, 2026
Apr 06, 2026
Apr 08, 2026
7.8 HIGH
CVE-2026-21374 — Buffer Over-read in Camera

Memory Corruption when processing auxiliary sensor input/output control commands with insufficient buffer size validation.

aqt1000_firmware qca6391_firmware qca6420_firmware qca6430_firmware wcd9341_firmware wcd9380_firmware +102 more | Memory Corruption
Apr 06, 2026 Apr 08, 2026
Apr 06, 2026
Apr 08, 2026
7.8 HIGH
CVE-2026-21373 — Buffer Over-read in Camera

Memory Corruption when accessing an output buffer without validating its size during IOCTL processing.

aqt1000_firmware qca6391_firmware qca6420_firmware qca6430_firmware wcd9341_firmware wcd9380_firmware +102 more | Memory Corruption
Apr 06, 2026 Apr 08, 2026
Apr 06, 2026
Apr 08, 2026
7.8 HIGH
CVE-2026-21372 — Heap-Based Buffer Overflow in Power Management IC

Memory Corruption when sending IOCTL requests with invalid buffer sizes during memcpy operations.

wcd9380_firmware wcd9385_firmware wcn3988_firmware qcm6490_firmware snapdragon_662_mobile_platform_firmware snapdragon_7c\+_gen_3_compute_firmware +50 more | Memory Corruption
Apr 06, 2026 Apr 08, 2026
Apr 06, 2026
Apr 08, 2026
7.8 HIGH
CVE-2026-21371 — Buffer Over-read in WinBlast Driver

Memory Corruption when retrieving output buffer with insufficient size validation.

aqt1000_firmware qca6391_firmware qca6420_firmware qca6430_firmware wcd9341_firmware wcd9380_firmware +98 more | Memory Corruption
Apr 06, 2026 Apr 08, 2026
Apr 06, 2026
Apr 08, 2026
7.6 HIGH
CVE-2026-21367 — Buffer Over-read in WLAN Firmware

Transient DOS when processing nonstandard FILS Discovery Frames with out-of-range action sizes during initial scans.

qca6391_firmware sd_8_gen1_5g_firmware wcd9380_firmware wcd9385_firmware wcn3988_firmware wsa8810_firmware +294 more | Remote | Denial of Service
Apr 06, 2026 Apr 08, 2026
Apr 06, 2026
Apr 08, 2026
7.1 HIGH
CVE-2025-47400 — Buffer Over-read in Computer Vision

Cryptographic issue while copying data to a destination buffer without validating its size.

wcd9395_firmware wsa8840_firmware wsa8845_firmware wsa8845h_firmware wcd9395 wsa8840 +16 more | Memory Corruption
Apr 06, 2026 Apr 08, 2026
Apr 06, 2026
Apr 08, 2026
8.8 HIGH
CVE-2025-47392 — Integer Overflow or Wraparound in GPS

Memory corruption when decoding corrupted satellite data files with invalid signature offsets.

qca6391_firmware qca6574au_firmware qca6595au_firmware qca6696_firmware sd_8_gen1_5g_firmware sw5100_firmware +302 more | Memory Corruption
Apr 06, 2026 Apr 08, 2026
Apr 06, 2026
Apr 08, 2026
7.8 HIGH
CVE-2025-47391 — Stack-based Buffer Overflow in Camera Driver

Memory corruption while processing a frame request from user.

qca6391_firmware qca6595au_firmware sd_8_gen1_5g_firmware wcd9380_firmware wcd9385_firmware wcn3988_firmware +196 more | Memory Corruption
Apr 06, 2026 Apr 08, 2026
Apr 06, 2026
Apr 08, 2026
7.8 HIGH
CVE-2025-47390 — Buffer Over-read in Camera

Memory corruption while preprocessing IOCTL request in JPEG driver.

wcd9380_firmware wcd9385_firmware wsa8830_firmware wsa8835_firmware qcm6490_firmware snapdragon_7c\+_gen_3_compute_firmware +52 more | Memory Corruption
Apr 06, 2026 Apr 08, 2026
Apr 06, 2026
Apr 08, 2026
7.8 HIGH
CVE-2025-47389 — Buffer Copy Without Checking Size of Input in Automotive Platform

Memory corruption when buffer copy operation fails due to integer overflow during attestation report generation.

qam8295p_firmware qca6391_firmware qca6574au_firmware qca6595au_firmware qca6696_firmware sa6145p_firmware +356 more | Memory Corruption
Apr 06, 2026 Apr 08, 2026
Apr 06, 2026
Apr 08, 2026
6.5 MEDIUM
CVE-2025-47374 — Use After Free in Camera Driver

Memory Corruption when accessing freed memory due to concurrent fence deregistration and signal handling.

wcd9380_firmware wcd9385_firmware wsa8830_firmware wsa8835_firmware sxr2230p_firmware wsa8832_firmware +54 more | Memory Corruption
Apr 06, 2026 Apr 08, 2026
Apr 06, 2026
Apr 08, 2026
Showing 20 of 6576 Results