cyber
·
news
News
Deep Dives
Settings
Sign in
999 items
Unread (2131)
All
Dismissed
All
Critical
High
Supply Chain
Ransomware
Breaches
Zero-Day
CVEs
HIGH
CVE-2026-1718 (CVSS 7.1) — IBM Db2 11.5.0 through 11.5.9, and 12.1.0 through 12.1.4 is vulnerable to a denial of service with a...
NVD
CVE-2026-1718
9d ago
HIGH
CVE-2024-56462 (CVSS 7.2) — IBM QRadar 7.5.0 through 7.5.0 UP15 Interim Fix 002 could allow a privileged user to upload a malici...
NVD
CVE-2024-56462
9d ago
HIGH
CVE-2026-48906 (CVSS 8.1) — The vulnerability in the Tassos Framework Plugin allows users to delete arbitrary files on the affec...
NVD
CVE-2026-48906
9d ago
HIGH
CVE-2026-40852 (CVSS 7.2) — A highly authenticated attacker can alter the config generator injecting a payload into future creat...
NVD
CVE-2026-40852
9d ago
HIGH
CVE-2026-40851 (CVSS 8.4) — A local attacker can perform a confusion attack on the cfgparser via a specially crafted file on an ...
NVD
CVE-2026-40851
9d ago
HIGH
CVE-2026-40850 (CVSS 7.5) — An unauthenticated remote attacker can exploit an unauthenticated SQL Injection vulnerability in the...
NVD
CVE-2026-40850
9d ago
HIGH
CVE-2026-40836 (CVSS 7.1) — An low privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the ...
NVD
CVE-2026-40836
9d ago
HIGH
CVE-2026-40834 (CVSS 7.1) — An low privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the ...
NVD
CVE-2026-40834
9d ago
HIGH
CVE-2026-40833 (CVSS 7.1) — An low privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the ...
NVD
CVE-2026-40833
9d ago
HIGH
CVE-2025-30028 (CVSS 8.6) — A vulnerability in Active Backup for Business allows unauthorized remote attackers to read arbitrary...
NVD
CVE-2025-30028
9d ago
HIGH
CVE-2025-14713 (CVSS 7.5) — An Exposed Dangerous Method or Function vulnerability in Synology C2 Identity Edge Server package in...
NVD
CVE-2025-14713
9d ago
HIGH
CVE-2025-13392 (CVSS 8.1) — Improper check for unusual or exceptional conditions vulnerability in SSO in Synology DiskStation Ma...
NVD
CVE-2025-13392
9d ago
HIGH
CVE-2023-52945 (CVSS 7.8) — Uncontrolled search path element vulnerability in OpenSSL DLL component in Synology BeeDrive for des...
NVD
CVE-2023-52945
9d ago
HIGH
CVE-2026-8832 (CVSS 8.8) — The WPCode - Insert Headers and Footers + Custom Code Snippets - WordPress Code Manager plugin for W...
NVD
CVE-2026-8832
9d ago
HIGH
CVE-2026-8143 (CVSS 7.2) — The HBook plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'hb_country_iso'...
NVD
CVE-2026-8143
9d ago
HIGH
CVE-2026-6169 (CVSS 7.2) — The affiliate-toolkit plugin for WordPress is vulnerable to remote code execution in all versions up...
NVD
CVE-2026-6169
9d ago
HIGH
CVE-2026-40819 (CVSS 7.5) — An unauthenticated remote attacker can exploit an unauthenticated SQL Injection vulnerability in the...
NVD
CVE-2026-40819
9d ago
HIGH
CVE-2026-40818 (CVSS 7.5) — An unauthenticated remote attacker can exploit an unauthenticated SQL Injection vulnerability in the...
NVD
CVE-2026-40818
9d ago
HIGH
CVE-2026-40817 (CVSS 7.5) — An unauthenticated remote attacker can exploit an unauthenticated SQL Injection vulnerability in the...
NVD
CVE-2026-40817
9d ago
HIGH
CVE-2026-40816 (CVSS 7.5) — An unauthenticated remote attacker can exploit an unauthenticated SQL Injection vulnerability in the...
NVD
CVE-2026-40816
9d ago
HIGH
CVE-2026-40815 (CVSS 7.5) — An unauthenticated remote attacker can exploit an unauthenticated SQL Injection vulnerability in the...
NVD
CVE-2026-40815
9d ago
HIGH
CVE-2026-40814 (CVSS 7.5) — An unauthenticated remote attacker can exploit an unauthenticated SQL Injection vulnerability in the...
NVD
CVE-2026-40814
9d ago
HIGH
CVE-2026-40813 (CVSS 7.5) — An unauthenticated remote attacker can exploit an unauthenticated SQL Injection vulnerability in the...
NVD
CVE-2026-40813
9d ago
HIGH
CVE-2026-40812 (CVSS 7.5) — An unauthenticated remote attacker can exploit an unauthenticated SQL Injection vulnerability in the...
NVD
CVE-2026-40812
9d ago
HIGH
CVE-2026-40811 (CVSS 7.5) — An unauthenticated remote attacker can exploit an unauthenticated SQL Injection vulnerability in the...
NVD
CVE-2026-40811
9d ago
HIGH
CVE-2026-40810 (CVSS 7.5) — An unauthenticated remote attacker can exploit an unauthenticated SQL Injection vulnerability in the...
NVD
CVE-2026-40810
9d ago
HIGH
CVE-2026-3375 (CVSS 7.2) — The LiteSpeed Cache plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the /wp-js...
NVD
CVE-2026-3375
9d ago
HIGH
CVE-2025-41670 (CVSS 7.8) — A local user with low privileges may be able to influence the behavior of a privileged system servic...
NVD
CVE-2025-41670
9d ago
HIGH
CVE-2025-41669 (CVSS 8.8) — The Web-based Management allows a remote low privileged Engineer user to install additional APPs on ...
NVD
CVE-2025-41669
9d ago
HIGH
CVE-2026-9200 (CVSS 7.5) — The Query Shortcode plugin for WordPress is vulnerable to Local File Inclusion in all versions up to...
NVD
CVE-2026-9200
9d ago
HIGH
CVE-2026-8994 (CVSS 8.1) — The Login with NEAR plugin for WordPress is vulnerable to Authentication Bypass in all versions up t...
NVD
CVE-2026-8994
9d ago
HIGH
CVE-2026-8787 (CVSS 8.8) — The Firebase Support & Chat Management plugin for WordPress is vulnerable to privilege escalation in...
NVD
CVE-2026-8787
9d ago
HIGH
CVE-2026-9632 (CVSS 8.8) — A flaw has been found in UTT HiPER 1250GW up to 3.2.7-210907-180535. Affected by this issue is the f...
NVD
CVE-2026-9632
10d ago
HIGH
CVE-2026-9631 (CVSS 8.8) — A vulnerability was detected in UTT HiPER 1250GW up to 3.2.7-210907-180535. Affected by this vulnera...
NVD
CVE-2026-9631
10d ago
HIGH
CVE-2026-9628 (CVSS 8.8) — A weakness has been identified in UTT HiPER 1200GW up to 2.5.3-170306. Affected is an unknown functi...
NVD
CVE-2026-9628
10d ago
HIGH
CVE-2026-9627 (CVSS 8.8) — A security flaw has been discovered in UTT HiPER 1200GW up to 2.5.3-170306. This impacts the functio...
NVD
CVE-2026-9627
10d ago
HIGH
CVE-2026-49014 (CVSS 7.4) — In GDAL 3.1.0 through 3.13.0, scanForGeometryContainers in the netCDF driver allows code execution v...
NVD
CVE-2026-49014
10d ago
HIGH
CVE-2026-9606 (CVSS 7.3) — A vulnerability has been found in itsourcecode Courier Management System 1.0. Impacted is an unknown...
NVD
CVE-2026-9606
10d ago
HIGH
CVE-2026-9605 (CVSS 7.3) — A flaw has been found in GNU libredwg up to 0.13.4.8160. This issue affects the function bit_read_RC...
NVD
CVE-2026-9605
10d ago
HIGH
CVE-2026-9312 (CVSS 8.2) — A server-side request forgery (SSRF) vulnerability was identified in GitHub Enterprise Server that a...
NVD
CVE-2026-9312
10d ago
HIGH
CVE-2026-9584 (CVSS 7.3) — A security vulnerability has been detected in code-projects Project Management System 1.0. Affected ...
NVD
CVE-2026-9584
10d ago
HIGH
CVE-2026-45298 (CVSS 8.6) — Dozzle is a realtime log viewer for docker containers. Prior to 10.5.2, in a default dozzle deploy (...
NVD
CVE-2026-45298
10d ago
HIGH
CVE-2026-44966 (CVSS 8.3) — Velocity.js is a JavaScript implementation of the Apache Velocity template engine. In 2.1.5 and earl...
NVD
CVE-2026-44966
10d ago
HIGH
CVE-2026-9580 (CVSS 7.3) — A vulnerability was determined in JeecgBoot up to 3.9.1. The affected element is the function LoginC...
NVD
CVE-2026-9580
10d ago
HIGH
CVE-2026-9575 (CVSS 7.3) — A vulnerability has been found in itsourcecode Student Transcript Processing System 1.0. This issue ...
NVD
CVE-2026-9575
10d ago
HIGH
CVE-2026-9574 (CVSS 7.3) — A flaw has been found in itsourcecode Student Transcript Processing System 1.0. This vulnerability a...
NVD
CVE-2026-9574
10d ago
HIGH
CVE-2026-44832 (CVSS 8.8) — Snipe-IT is an IT asset/license management system. Prior to 8.4.1, aAn authenticated user with only ...
NVD
CVE-2026-44832
10d ago
HIGH
CVE-2026-9560 (CVSS 7.8) — Privilege escalation via background service of OpenVPN Connect 3.5.1 through 3.8.1 on macOS allows a...
NVD
CVE-2026-9560
10d ago
HIGH
CVE-2026-9170 (CVSS 7.5) — IBM Web Server Plug-ins for WebSphere Application Server and WebSphere Liberty 8.5, 9.0 IBM WebSpher...
NVD
CVE-2026-9170
10d ago
HIGH
CVE-2026-8856 (CVSS 7.7) — IBM HTTP Server 8.5, and 9.0 is vulnerable to denial of service in configurations where an attacker ...
NVD
CVE-2026-8856
10d ago
Prev
Page 7 / 20
Next
HIGH
NVD
Wed, 27 May 2026 14:16:43 UTC
✕ Dismiss
CVE-2026-1718 (CVSS 7.1) — IBM Db2 11.5.0 through 11.5.9, and 12.1.0 through 12.1.4 is vulnerable to a denial of service with a...
https://nvd.nist.gov/vuln/detail/CVE-2026-1718
TL;DR
IBM Db2 11.5.0 through 11.5.9, and 12.1.0 through 12.1.4 is vulnerable to a denial of service with a specially crafted query when autonomous transactions are enabled.
CVE-2026-1718
Read full story ↗