Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
CVE Intelligence

Vulnerabilities published in the last 30 days. Filter by severity, exploit status, or attack vector.

All Critical Actively Exploited Remotely Exploitable
Last Updated Published CVSS Score
Score
Vulnerability
Published
5.3 MEDIUM
CVE-2026-34654 — Adobe Commerce | Dependency on Vulnerable Third-Party Component (CWE-1395)

Adobe Commerce versions 2.4.9-beta1, 2.4.8-p4, 2.4.7-p9, 2.4.6-p14, 2.4.5-p16, 2.4.4-p17 and earlier are affected by a Dependency on Vulnerable Third-Party Component vulnerability that could result i…

commerce magento commerce_b2b | Remote | Denial of Service
May 12, 2026 May 20, 2026
May 12, 2026
May 20, 2026
8.7 HIGH
CVE-2026-34653 — Adobe Commerce | Improper Limitation of a Pathname to a Restricted Directory ('Path Trave…

Adobe Commerce versions 2.4.9-beta1, 2.4.8-p4, 2.4.7-p9, 2.4.6-p14, 2.4.5-p16, 2.4.4-p17 and earlier are affected by an Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') …

commerce magento commerce_b2b | Remote | Path Traversal
May 12, 2026 May 20, 2026
May 12, 2026
May 20, 2026
7.5 HIGH
CVE-2026-34652 — Adobe Commerce | Dependency on Vulnerable Third-Party Component (CWE-1395)

Adobe Commerce versions 2.4.9-beta1, 2.4.8-p4, 2.4.7-p9, 2.4.6-p14, 2.4.5-p16, 2.4.4-p17 and earlier are affected by a Dependency on Vulnerable Third-Party Component vulnerability that could result i…

commerce magento commerce_b2b | Remote | Supply Chain
May 12, 2026 May 20, 2026
May 12, 2026
May 20, 2026
7.5 HIGH
CVE-2026-34651 — Adobe Commerce | Uncontrolled Resource Consumption (CWE-400)

Adobe Commerce versions 2.4.9-beta1, 2.4.8-p4, 2.4.7-p9, 2.4.6-p14, 2.4.5-p16, 2.4.4-p17 and earlier are affected by an Uncontrolled Resource Consumption vulnerability that could lead to application …

commerce magento commerce_b2b | Remote | Denial of Service
May 12, 2026 May 20, 2026
May 12, 2026
May 20, 2026
7.5 HIGH
CVE-2026-34650 — Adobe Commerce | Uncontrolled Resource Consumption (CWE-400)

Adobe Commerce versions 2.4.9-beta1, 2.4.8-p4, 2.4.7-p9, 2.4.6-p14, 2.4.5-p16, 2.4.4-p17 and earlier are affected by an Uncontrolled Resource Consumption vulnerability that could lead to application …

commerce magento commerce_b2b | Remote | Denial of Service
May 12, 2026 May 20, 2026
May 12, 2026
May 20, 2026
7.5 HIGH
CVE-2026-34649 — Adobe Commerce | Uncontrolled Resource Consumption (CWE-400)

Adobe Commerce versions 2.4.9-beta1, 2.4.8-p4, 2.4.7-p9, 2.4.6-p14, 2.4.5-p16, 2.4.4-p17 and earlier are affected by an Uncontrolled Resource Consumption vulnerability that could lead to application …

commerce magento commerce_b2b | Remote | Denial of Service
May 12, 2026 May 20, 2026
May 12, 2026
May 20, 2026
7.5 HIGH
CVE-2026-34648 — Adobe Commerce | Uncontrolled Resource Consumption (CWE-400)

Adobe Commerce versions 2.4.9-beta1, 2.4.8-p4, 2.4.7-p9, 2.4.6-p14, 2.4.5-p16, 2.4.4-p17 and earlier are affected by an Uncontrolled Resource Consumption vulnerability that could lead to application …

commerce magento commerce_b2b | Remote | Denial of Service
May 12, 2026 May 20, 2026
May 12, 2026
May 20, 2026
7.4 HIGH
CVE-2026-34647 — Adobe Commerce | Server-Side Request Forgery (SSRF) (CWE-918)

Adobe Commerce versions 2.4.9-beta1, 2.4.8-p4, 2.4.7-p9, 2.4.6-p14, 2.4.5-p16, 2.4.4-p17 and earlier are affected by a Server-Side Request Forgery (SSRF) vulnerability that could result in a Security…

commerce magento commerce_b2b | Remote | Server-Side Request Forgery
May 12, 2026 May 20, 2026
May 12, 2026
May 20, 2026
7.5 HIGH
CVE-2026-34646 — Adobe Commerce | Incorrect Authorization (CWE-863)

Adobe Commerce versions 2.4.9-beta1, 2.4.8-p4, 2.4.7-p9, 2.4.6-p14, 2.4.5-p16, 2.4.4-p17 and earlier are affected by an Incorrect Authorization vulnerability that could result in a Security feature b…

commerce magento commerce_b2b | Remote | Authorization
May 12, 2026 May 20, 2026
May 12, 2026
May 20, 2026
7.5 HIGH
CVE-2026-34645 — Adobe Commerce | Incorrect Authorization (CWE-863)

Adobe Commerce versions 2.4.9-beta1, 2.4.8-p4, 2.4.7-p9, 2.4.6-p14, 2.4.5-p16, 2.4.4-p17 and earlier are affected by an Incorrect Authorization vulnerability that could result in a Security feature b…

commerce magento commerce_b2b | Remote | Authorization
May 12, 2026 May 20, 2026
May 12, 2026
May 20, 2026
7.5 HIGH
CVE-2026-23827 — Unauthenticated Remote Code Execution via Heap Buffer Overflow in Network Management Serv…

A heap-based buffer overflow vulnerability exists in a Network management service of AOS-8 and AOS-10 that could allow an unauthenticated remote attacker to achieve remote code execution. Successful …

arubaos sd-wan | Remote | Memory Corruption
May 12, 2026 May 15, 2026
May 12, 2026
May 15, 2026
7.5 HIGH
CVE-2026-23826 — Unauthenticated Denial of Service in AOS-8 Network Management Service

A vulnerability in a network management service of AOS-8 Operating System could allow an unauthenticated remote attacker to exploit this vulnerability by sending specially crafted network packets to …

arubaos sd-wan | Remote | Denial of Service
May 12, 2026 May 15, 2026
May 12, 2026
May 15, 2026
7.5 HIGH
CVE-2026-23825 — Unauthenticated Denial-of-Service via Crafted Messages in a Network Protocol Handling Com…

Vulnerabilities exist in a protocol-handling component of AOS-8 and AOS-10 Operating Systems. An unauthenticated attacker could exploit these vulnerabilities by sending specially crafted network mess…

arubaos sd-wan | Remote | Denial of Service
May 12, 2026 May 15, 2026
May 12, 2026
May 15, 2026
7.5 HIGH
CVE-2026-23824 — Unauthenticated Denial-of-Service via Crafted Messages in a Network Protocol Handling Com…

Vulnerabilities exist in a protocol-handling component of AOS-8 and AOS-10 Operating Systems. An unauthenticated attacker could exploit these vulnerabilities by sending specially crafted network mess…

arubaos sd-wan | Remote | Denial of Service
May 12, 2026 May 15, 2026
May 12, 2026
May 15, 2026
Showing 20 of 7134 Results