1009 items
Unread (2139) All Dismissed
HIGH
CVE-2026-8180 (CVSS 7.5) — IBM Aspera High-Speed Transfer Endpoint 3.7.4 through 4.4.7 Fix Pack 1 and IBM Aspera High-Speed Tra...
NVD CVE-2026-8180 9d ago
HIGH
CVE-2026-8179 (CVSS 8.8) — IBM Aspera High-Speed Transfer Endpoint 3.7.4 through 4.4.7 Fix Pack 1 and IBM Aspera High-Speed Tra...
NVD CVE-2026-8179 9d ago
HIGH
CVE-2026-7528 (CVSS 7.1) — IBM Langflow OSS 1.0.0 through 1.9.0 could allow a denial of service due to uncontrolled resource co...
NVD CVE-2026-7528 9d ago
HIGH
CVE-2026-7365 (CVSS 8.4) — IBM Operations Analytics - Log Analysis  and IBM SmartCloud Analytics - Log Analysis uses default pa...
NVD CVE-2026-7365 9d ago
HIGH
CVE-2026-5065 (CVSS 8.8) — IBM Controller 11.0.1, 11.1.0, 11.1.1, and 11.1.2 contains hard-coded credentials, such as a passwor...
NVD CVE-2026-5065 9d ago
HIGH
CVE-2026-3623 (CVSS 7.8) — IBM Netezza Performance Server Replication Services 3.0.2.0 through 3.0.5.0 allows an attacker with ...
NVD CVE-2026-3623 9d ago
HIGH
CVE-2026-3366 (CVSS 7.5) — IBM InfoSphere Optim Test Data Fabrication 1.0.0, 1.0.0.1, 1.0.0.2, 1.0.2, 1.0.2.2, 1.0.2.3, 1.0.2.4...
NVD CVE-2026-3366 9d ago
HIGH
CVE-2026-1933 (CVSS 7.1) — A flaw was found in Samba’s handling of NTFS-style reparse points on shares configured with read onl...
NVD CVE-2026-1933 9d ago
HIGH
CVE-2026-1718 (CVSS 7.1) — IBM Db2 11.5.0 through 11.5.9, and 12.1.0 through 12.1.4 is vulnerable to a denial of service with a...
NVD CVE-2026-1718 9d ago
HIGH
CVE-2024-56462 (CVSS 7.2) — IBM QRadar 7.5.0 through 7.5.0 UP15 Interim Fix 002 could allow a privileged user to upload a malici...
NVD CVE-2024-56462 9d ago
HIGH
CVE-2026-48906 (CVSS 8.1) — The vulnerability in the Tassos Framework Plugin allows users to delete arbitrary files on the affec...
NVD CVE-2026-48906 9d ago
HIGH
CVE-2026-40852 (CVSS 7.2) — A highly authenticated attacker can alter the config generator injecting a payload into future creat...
NVD CVE-2026-40852 9d ago
HIGH
CVE-2026-40851 (CVSS 8.4) — A local attacker can perform a confusion attack on the cfgparser via a specially crafted file on an ...
NVD CVE-2026-40851 9d ago
HIGH
CVE-2026-40850 (CVSS 7.5) — An unauthenticated remote attacker can exploit an unauthenticated SQL Injection vulnerability in the...
NVD CVE-2026-40850 9d ago
HIGH
CVE-2026-40836 (CVSS 7.1) — An low privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the ...
NVD CVE-2026-40836 9d ago
HIGH
CVE-2026-40834 (CVSS 7.1) — An low privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the ...
NVD CVE-2026-40834 9d ago
HIGH
CVE-2026-40833 (CVSS 7.1) — An low privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the ...
NVD CVE-2026-40833 9d ago
HIGH
CVE-2025-30028 (CVSS 8.6) — A vulnerability in Active Backup for Business allows unauthorized remote attackers to read arbitrary...
NVD CVE-2025-30028 9d ago
HIGH
CVE-2025-14713 (CVSS 7.5) — An Exposed Dangerous Method or Function vulnerability in Synology C2 Identity Edge Server package in...
NVD CVE-2025-14713 9d ago
HIGH
CVE-2025-13392 (CVSS 8.1) — Improper check for unusual or exceptional conditions vulnerability in SSO in Synology DiskStation Ma...
NVD CVE-2025-13392 9d ago
HIGH
CVE-2023-52945 (CVSS 7.8) — Uncontrolled search path element vulnerability in OpenSSL DLL component in Synology BeeDrive for des...
NVD CVE-2023-52945 9d ago
HIGH
CVE-2026-8832 (CVSS 8.8) — The WPCode - Insert Headers and Footers + Custom Code Snippets - WordPress Code Manager plugin for W...
NVD CVE-2026-8832 9d ago
HIGH
CVE-2026-8143 (CVSS 7.2) — The HBook plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'hb_country_iso'...
NVD CVE-2026-8143 9d ago
HIGH
CVE-2026-6169 (CVSS 7.2) — The affiliate-toolkit plugin for WordPress is vulnerable to remote code execution in all versions up...
NVD CVE-2026-6169 9d ago
HIGH
CVE-2026-40819 (CVSS 7.5) — An unauthenticated remote attacker can exploit an unauthenticated SQL Injection vulnerability in the...
NVD CVE-2026-40819 9d ago
HIGH
CVE-2026-40818 (CVSS 7.5) — An unauthenticated remote attacker can exploit an unauthenticated SQL Injection vulnerability in the...
NVD CVE-2026-40818 9d ago
HIGH
CVE-2026-40817 (CVSS 7.5) — An unauthenticated remote attacker can exploit an unauthenticated SQL Injection vulnerability in the...
NVD CVE-2026-40817 9d ago
HIGH
CVE-2026-40816 (CVSS 7.5) — An unauthenticated remote attacker can exploit an unauthenticated SQL Injection vulnerability in the...
NVD CVE-2026-40816 9d ago
HIGH
CVE-2026-40815 (CVSS 7.5) — An unauthenticated remote attacker can exploit an unauthenticated SQL Injection vulnerability in the...
NVD CVE-2026-40815 9d ago
HIGH
CVE-2026-40814 (CVSS 7.5) — An unauthenticated remote attacker can exploit an unauthenticated SQL Injection vulnerability in the...
NVD CVE-2026-40814 9d ago
HIGH
CVE-2026-40813 (CVSS 7.5) — An unauthenticated remote attacker can exploit an unauthenticated SQL Injection vulnerability in the...
NVD CVE-2026-40813 9d ago
HIGH
CVE-2026-40812 (CVSS 7.5) — An unauthenticated remote attacker can exploit an unauthenticated SQL Injection vulnerability in the...
NVD CVE-2026-40812 9d ago
HIGH
CVE-2026-40811 (CVSS 7.5) — An unauthenticated remote attacker can exploit an unauthenticated SQL Injection vulnerability in the...
NVD CVE-2026-40811 9d ago
HIGH
CVE-2026-40810 (CVSS 7.5) — An unauthenticated remote attacker can exploit an unauthenticated SQL Injection vulnerability in the...
NVD CVE-2026-40810 9d ago
HIGH
CVE-2026-3375 (CVSS 7.2) — The LiteSpeed Cache plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the /wp-js...
NVD CVE-2026-3375 9d ago
HIGH
CVE-2025-41670 (CVSS 7.8) — A local user with low privileges may be able to influence the behavior of a privileged system servic...
NVD CVE-2025-41670 9d ago
HIGH
CVE-2025-41669 (CVSS 8.8) — The Web-based Management allows a remote low privileged Engineer user to install additional APPs on ...
NVD CVE-2025-41669 9d ago
HIGH
CVE-2026-9200 (CVSS 7.5) — The Query Shortcode plugin for WordPress is vulnerable to Local File Inclusion in all versions up to...
NVD CVE-2026-9200 9d ago
HIGH
CVE-2026-8994 (CVSS 8.1) — The Login with NEAR plugin for WordPress is vulnerable to Authentication Bypass in all versions up t...
NVD CVE-2026-8994 9d ago
HIGH
CVE-2026-8787 (CVSS 8.8) — The Firebase Support & Chat Management plugin for WordPress is vulnerable to privilege escalation in...
NVD CVE-2026-8787 9d ago
HIGH
CVE-2026-9632 (CVSS 8.8) — A flaw has been found in UTT HiPER 1250GW up to 3.2.7-210907-180535. Affected by this issue is the f...
NVD CVE-2026-9632 10d ago
HIGH
CVE-2026-9631 (CVSS 8.8) — A vulnerability was detected in UTT HiPER 1250GW up to 3.2.7-210907-180535. Affected by this vulnera...
NVD CVE-2026-9631 10d ago
HIGH
CVE-2026-9628 (CVSS 8.8) — A weakness has been identified in UTT HiPER 1200GW up to 2.5.3-170306. Affected is an unknown functi...
NVD CVE-2026-9628 10d ago
HIGH
CVE-2026-9627 (CVSS 8.8) — A security flaw has been discovered in UTT HiPER 1200GW up to 2.5.3-170306. This impacts the functio...
NVD CVE-2026-9627 10d ago
HIGH
CVE-2026-49014 (CVSS 7.4) — In GDAL 3.1.0 through 3.13.0, scanForGeometryContainers in the netCDF driver allows code execution v...
NVD CVE-2026-49014 10d ago
HIGH
CVE-2026-9606 (CVSS 7.3) — A vulnerability has been found in itsourcecode Courier Management System 1.0. Impacted is an unknown...
NVD CVE-2026-9606 10d ago
HIGH
CVE-2026-9605 (CVSS 7.3) — A flaw has been found in GNU libredwg up to 0.13.4.8160. This issue affects the function bit_read_RC...
NVD CVE-2026-9605 10d ago
HIGH
CVE-2026-9312 (CVSS 8.2) — A server-side request forgery (SSRF) vulnerability was identified in GitHub Enterprise Server that a...
NVD CVE-2026-9312 10d ago
HIGH
CVE-2026-9584 (CVSS 7.3) — A security vulnerability has been detected in code-projects Project Management System 1.0. Affected ...
NVD CVE-2026-9584 10d ago
HIGH
CVE-2026-45298 (CVSS 8.6) — Dozzle is a realtime log viewer for docker containers. Prior to 10.5.2, in a default dozzle deploy (...
NVD CVE-2026-45298 10d ago
HIGH NVD Wed, 27 May 2026 14:17:38 UTC
CVE-2026-8180 (CVSS 7.5) — IBM Aspera High-Speed Transfer Endpoint 3.7.4 through 4.4.7 Fix Pack 1 and IBM Aspera High-Speed Tra...
https://nvd.nist.gov/vuln/detail/CVE-2026-8180
TL;DR
IBM Aspera High-Speed Transfer Endpoint 3.7.4 through 4.4.7 Fix Pack 1 and IBM Aspera High-Speed Transfer Server 3.7.4 through 4.4.7 Fix Pack 1 and IBM Aspera High-Speed Transfer Endpoint are affected by a potential denial of service in the asperahttpd component. An unauthenticated user can cause the asperahttpd service to crash.
CVE-2026-8180
Read full story ↗