Latest CVE Feed

CVE Intelligence

Vulnerabilities published in the last 30 days. Filter by severity, exploit status, or attack vector.

All Critical Actively Exploited Remotely Exploitable

Score

Vulnerability

Published

4.6 MEDIUM

CVE-2026-5476 — NASA cFS cfe_tbl_passthru_codec.c CFE_TBL_ValidateCodecLoadSize integer overflow

A vulnerability was identified in NASA cFS up to 7.0.0 on 32-bit. Affected is the function CFE_TBL_ValidateCodecLoadSize of the file cfe/modules/tbl/fsw/src/cfe_tbl_passthru_codec.c. The manipulation…

cfs | Memory Corruption

Apr 03, 2026 Apr 07, 2026

Apr 03, 2026

Apr 07, 2026

5.5 MEDIUM

CVE-2026-5475 — NASA cFS CCSDS Header Size cfe_sb_priv.c CFE_SB_TransmitMsg memory corruption

A vulnerability was determined in NASA cFS up to 7.0.0. This impacts the function CFE_SB_TransmitMsg of the file cfe_sb_priv.c of the component CCSDS Header Size Handler. Executing a manipulation can…

cfs | Memory Corruption

Apr 03, 2026 Apr 07, 2026

Apr 03, 2026

Apr 07, 2026

10.0 CRITICAL

CVE-2026-32186 — Microsoft Bing Elevation of Privilege Vulnerability

Server-side request forgery (ssrf) in Microsoft Bing allows an unauthorized attacker to elevate privileges over a network.

bing | Remote

Apr 03, 2026 Apr 13, 2026

Apr 03, 2026

Apr 13, 2026

9.8 CRITICAL

CVE-2026-0545 — Missing Authentication for Critical Function in mlflow/mlflow

In mlflow/mlflow, the FastAPI job endpoints under `/ajax-api/3.0/jobs/*` are not protected by authentication or authorization when the `basic-auth` app is enabled. This vulnerability affects the late…

mlflow | Remote | Authentication

Apr 03, 2026 Apr 21, 2026

Apr 03, 2026

Apr 21, 2026

Showing 20 of 5564 Results

Browse by Apps

Latest CVE Feed

Cookie Preferences