Latest CVE Feed
CVE Intelligence
Vulnerabilities published in the last 30 days. Filter by severity, exploit status, or attack vector.
Score
Vulnerability
Published
6.5
MEDIUM
CVE-2026-28376
— Grafana Live push endpoint allows unbounded memory allocation leading to OOM
The Grafana Live push endpoint can be exploited to cause unbounded memory allocation by sending a large or streaming request body, potentially leading to out-of-memory conditions. An authenticated us…
May 13, 2026
May 18, 2026
May 13, 2026
May 18, 2026
4.3
MEDIUM
CVE-2026-28374
— IDOR in Annotations API allows unprivileged users to DELETE annotation
Editors could delete any annotation, even those they do not have read access to. The editor user cannot create or read the annotations.
May 13, 2026
Jun 02, 2026
May 13, 2026
Jun 02, 2026
4.9
MEDIUM
CVE-2026-0243
— Prisma SD-WAN: Denial of Service (DoS) Vulnerability Through IPv6 Crafted Packet
A denial of service (DoS) vulnerability in Palo Alto Networks Prisma SD-WAN ION devices enables an unauthenticated attacker in a network adjacent to a Prisma SD-WAN ION device to cause a system disru…
|
Denial of Service
May 13, 2026
May 14, 2026
May 13, 2026
May 14, 2026