Latest CVE Feed
CVE Intelligence
Vulnerabilities published in the last 30 days. Filter by severity, exploit status, or attack vector.
Score
Vulnerability
Published
9.0
CRITICAL
CVE-2026-2651
— Missing Authorization Validation in mlflow/mlflow
A vulnerability in MLflow versions <=3.10.1.dev0 allows unauthorized access to multipart upload (MPU) endpoints when the `--serve-artifacts` mode is enabled. The authorization logic does not enforce …
May 25, 2026
Jun 04, 2026
May 25, 2026
Jun 04, 2026
8.1
HIGH
CVE-2026-25193
— Gallagher Command Centre Service Account Credentials Exposure
Insertion of Sensitive Information into Log File (CWE-532) in some Command Centre Service installers could lead to Service Account credentials exposure. Mitigating Factor: Only sites that install Co…
|
Information Disclosure
May 25, 2026
May 26, 2026
May 25, 2026
May 26, 2026