Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest

Vulnerabilities published in the last 30 days. Filter by severity, exploit status, or attack vector.

All Critical Actively Exploited Remotely Exploitable
Last Updated Published CVSS Score
Score
Vulnerability
Published
2.3 LOW
CVE-2026-3236 — Octopus Server API Key Lifetime Extension Vulnerability

In affected versions of Octopus Server it was possible to create a new API key from an existing access token resulting in the new API key having a lifetime exceeding the original API key used to mint…

Remote | Authentication
Mar 05, 2026 Mar 05, 2026
Mar 05, 2026
Mar 05, 2026
10.0 CRITICAL
CVE-2026-21628 — Extension - astroidframe.work - Unauthenticated Remote Code Execution in Astroid Framewor…

A improperly secured file management feature allows uploads of dangerous data types for unauthenticated users, leading to remote code execution.

Remote | Authentication
Mar 05, 2026 Mar 05, 2026
Mar 05, 2026
Mar 05, 2026
7.5 HIGH
CVE-2026-1605 — Eclipse Jetty JDK Inflater Memory Leak

In Eclipse Jetty, versions 12.0.0-12.0.31 and 12.1.0-12.0.5, class GzipHandler exposes a vulnerability when a compressed HTTP request, with Content-Encoding: gzip, is processed and the corresponding …

Remote | Denial of Service
Mar 05, 2026 Mar 05, 2026
Mar 05, 2026
Mar 05, 2026
3.7 LOW
CVE-2025-11143 — Jetty URI Parser Differential Parsing Vulnerability

The Jetty URI parser has some key differences to other common parsers when evaluating invalid or unusual URIs. Differential parsing of URIs in systems using multiple components may result in security…

Remote | Misconfiguration
Mar 05, 2026 Mar 05, 2026
Mar 05, 2026
Mar 05, 2026
4.7 MEDIUM
CVE-2026-28551 — Cisco Device Security Management Module Race Condition Vulnerability

Race condition vulnerability in the device security management module. Impact: Successful exploitation of this vulnerability may affect availability.

| Race Condition
Mar 05, 2026 Mar 05, 2026
Mar 05, 2026
Mar 05, 2026
6.6 MEDIUM
CVE-2026-28549 — Apache Permission Service Race Condition

Race condition vulnerability in the permission management service. Impact: Successful exploitation of this vulnerability may affect availability.

| Race Condition
Mar 05, 2026 Mar 05, 2026
Mar 05, 2026
Mar 05, 2026
7.1 HIGH
CVE-2026-28548 — Apache Email Confidentiality Bypass

Vulnerability of improper verification in the email application. Impact: Successful exploitation of this vulnerability may affect service confidentiality.

| Authentication
Mar 05, 2026 Mar 05, 2026
Mar 05, 2026
Mar 05, 2026
6.8 MEDIUM
CVE-2026-28547 — Cisco Scanning Module Pointer Uninitialized Access Vulnerability

Vulnerability of uninitialized pointer access in the scanning module. Impact: Successful exploitation of this vulnerability may affect availability.

| Memory Corruption
Mar 05, 2026 Mar 05, 2026
Mar 05, 2026
Mar 05, 2026
5.9 MEDIUM
CVE-2026-28546 — Cisco ASA Buffer Overflow

Buffer overflow vulnerability in the scanning module. Impact: Successful exploitation of this vulnerability may affect availability.

| Memory Corruption
Mar 05, 2026 Mar 05, 2026
Mar 05, 2026
Mar 05, 2026
7.3 HIGH
CVE-2026-28542 — Apache System Service Framework Privilege Escalation

Permission bypass vulnerability in the system service framework. Impact: Successful exploitation of this vulnerability may affect availability.

| Authorization
Mar 05, 2026 Mar 05, 2026
Mar 05, 2026
Mar 05, 2026
6.5 MEDIUM
CVE-2026-2893 — Page and Post Clone <= 6.3 - Authenticated (Contributor+) SQL Injection via 'meta_key' Pa…

The Page and Post Clone plugin for WordPress is vulnerable to SQL Injection via the 'meta_key' parameter in the content_clone() function in all versions up to, and including, 6.3. This is due to insu…

Remote | Injection
Mar 05, 2026 Mar 05, 2026
Mar 05, 2026
Mar 05, 2026
6.5 MEDIUM
CVE-2026-28552 — Huawei IMS Out-of-Bounds Write Vulnerability

Out-of-bounds write vulnerability in the IMS module. Impact: Successful exploitation of this vulnerability may affect availability.

Remote | Memory Corruption
Mar 05, 2026 Mar 05, 2026
Mar 05, 2026
Mar 05, 2026
4.0 MEDIUM
CVE-2026-28550 — Cisco Security Control Module Race Condition Vulnerability

Race condition vulnerability in the security control module. Impact: Successful exploitation of this vulnerability may affect availability.

| Race Condition
Mar 05, 2026 Mar 05, 2026
Mar 05, 2026
Mar 05, 2026
5.9 MEDIUM
CVE-2026-28545 — "HP Printing Module Race Condition Vulnerability"

Race condition vulnerability in the printing module. Impact: Successful exploitation of this vulnerability may affect availability.

| Race Condition
Mar 05, 2026 Mar 05, 2026
Mar 05, 2026
Mar 05, 2026
6.2 MEDIUM
CVE-2026-28544 — Adobe Printing Module Race Condition Vulnerability

Race condition vulnerability in the printing module. Impact: Successful exploitation of this vulnerability may affect availability.

| Race Condition
Mar 05, 2026 Mar 05, 2026
Mar 05, 2026
Mar 05, 2026
4.4 MEDIUM
CVE-2026-28543 — Cisco Maintenance and Diagnostics Module Race Condition Vulnerability

Race condition vulnerability in the maintenance and diagnostics module. Impact: Successful exploitation of this vulnerability may affect availability.

| Race Condition
Mar 05, 2026 Mar 05, 2026
Mar 05, 2026
Mar 05, 2026
4.0 MEDIUM
CVE-2026-28541 — "Qualcomm Cellular Data Permission Control Vulnerability"

Permission control vulnerability in the cellular_data module. Impact: Successful exploitation of this vulnerability may affect availability.

| Authorization
Mar 05, 2026 Mar 05, 2026
Mar 05, 2026
Mar 05, 2026
4.0 MEDIUM
CVE-2026-28540 — Qualcomm Bluetooth Out-of-Bounds Character Read Vulnerability

Out-of-bounds character read vulnerability in Bluetooth. Impact: Successful exploitation of this vulnerability may affect service confidentiality.

| Memory Corruption
Mar 05, 2026 Mar 05, 2026
Mar 05, 2026
Mar 05, 2026
6.2 MEDIUM
CVE-2026-28539 — Apache Certificate Management Module Information Disclosure Vulnerability

Data processing vulnerability in the certificate management module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.

| Cryptography
Mar 05, 2026 Mar 05, 2026
Mar 05, 2026
Mar 05, 2026
5.9 MEDIUM
CVE-2026-28538 — Apache Certificate Management Path Traversal Vulnerability

Path traversal vulnerability in the certificate management module. Impact: Successful exploitation of this vulnerability may affect availability.

| Path Traversal
Mar 05, 2026 Mar 05, 2026
Mar 05, 2026
Mar 05, 2026
Showing 20 of 5252 Results