Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
CVE Intelligence

Vulnerabilities published in the last 30 days. Filter by severity, exploit status, or attack vector.

All Critical Actively Exploited Remotely Exploitable
Last Updated Published CVSS Score
Score
Vulnerability
Published
9.8 CRITICAL
CVE-2026-33879 — FLIP doesn't have rate limiting or brute-force protection on login

Federated Learning and Interoperability Platform (FLIP) is an open-source platform for federated training and evaluation of medical imaging AI models across healthcare institutions. The FLIP login pa…

federated_learning_and_interoperability_platform | Remote | Authentication
Mar 27, 2026 Apr 08, 2026
Mar 27, 2026
Apr 08, 2026
9.3 CRITICAL
CVE-2026-33875 — Authenticator Vulnerable to Authentication Flow Hijack

Gematik Authenticator securely authenticates users for login to digital health applications. Versions prior to 4.16.0 are vulnerable to authentication flow hijacking, potentially allowing attackers t…

authenticator | Remote | Authentication
Mar 27, 2026 Apr 03, 2026
Mar 27, 2026
Apr 03, 2026
7.8 HIGH
CVE-2026-33874 — Authenticator vulnerable to Remote Code Execution

Gematik Authenticator securely authenticates users for login to digital health applications. Starting in version 4.12.0 and prior to version 4.16.0, the Mac OS version of the Authenticator is vulnera…

macos authenticator | Authentication
Mar 27, 2026 Apr 21, 2026
Mar 27, 2026
Apr 21, 2026
9.9 CRITICAL
CVE-2026-33873 — Langflow has Authenticated Code Execution in Agentic Assistant Validation

Langflow is a tool for building and deploying AI-powered agents and workflows. Prior to version 1.9.0, the Agentic Assistant feature in Langflow executes LLM-generated Python code during its validati…

langflow | Remote | Injection
Mar 27, 2026 Apr 03, 2026
Mar 27, 2026
Apr 03, 2026
Showing 20 of 5664 Results