Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
CVE Intelligence

Vulnerabilities published in the last 30 days. Filter by severity, exploit status, or attack vector.

All Critical Actively Exploited Remotely Exploitable
Last Updated Published CVSS Score
Score
Vulnerability
Published
5.3 MEDIUM
CVE-2026-34883 — Dell Portrait Color Management Symbolic Link Escalation

An issue was discovered in the Portrait Dell Color Management application before 3.7.0 for Dell monitors. On Windows, a symbolic link vulnerability allows a local low-privileged user to escalate priv…

| Path Traversal
May 19, 2026 May 19, 2026
May 19, 2026
May 19, 2026
9.6 CRITICAL
CVE-2026-2587 — Glassfish Remote Code Execution Vulnerability

A critical Remote Code Execution (RCE) vulnerability was identified in the server-side template rendering mechanism used by the Glassfish gadget handler. The application processes .xml files and eval…

glassfish | Remote | Injection
May 19, 2026 May 21, 2026
May 19, 2026
May 21, 2026
9.1 CRITICAL
CVE-2026-2586 — GlassFish Administration Console Remote Code Execution Vulnerability

An authenticated Remote Code Execution (RCE) vulnerability was identified in GlassFish's Administration Console. A user with access to the panel can send crafted requests that allow the execution of …

glassfish | Remote | Authentication
May 19, 2026 May 21, 2026
May 19, 2026
May 21, 2026
7.3 HIGH
CVE-2025-70950 — Apache Go HTTP Directory Traversal Vulnerability

An issue in gohttp commit 34ea51 allows attackers to execute a directory traversal via supplying a crafted request.

Remote | Path Traversal
May 19, 2026 May 19, 2026
May 19, 2026
May 19, 2026
7.3 HIGH
CVE-2025-51427 — ModelScope Code Execution Vulnerability

An issue was discovered in ModelScope 1.25.0 allowing attackers to execute arbitrary code via crafted module listed in the configuration file (dey_mini.yaml) under the key ['nnet']['module'].

Remote | Injection
May 19, 2026 May 19, 2026
May 19, 2026
May 19, 2026
Showing 20 of 7585 Results