CVE Vulnerability Database

Complete database of CVE vulnerabilities. Track critical security threats, exploits and patches. Updated daily from NVD NIST.

KEV (262)

CVE-2025-15558

7.0 HIGH 7.0

Docker CLI for Windows searches for plugin binaries in C:\ProgramData\Docker\cli-plugins, a directory that does not exist by default. A low-privileged attacker can create this directory and place malicious CLI plugin …

04 Mar 2026 GitHub

Details

CVE-2026-26673

7.5 HIGH 7.5

An issue in DJI Mavic Mini, Spark, Mavic Air, Mini, Mini SE 0.1.00.0500 and below allows a remote attacker to cause a denial of service via the DJI Enhanced-WiFi transmission …

04 Mar 2026 Dji

Details

CVE-2026-26514

7.5 HIGH 7.5

An Argument Injection vulnerability exists in bird-lg-go before commit 6187a4e. The traceroute module uses shlex.Split to parse user input without validation, allowing remote attackers to inject arbitrary flags (e.g., -w, …

04 Mar 2026 Xddxdd

Details

CVE-2026-26478

9.8 CRITICAL 9.8

A shell command injection vulnerability in Mobvoi Tichome Mini smart speaker 012-18853 and 027-58389 allows remote attackers to send a specially crafted UDP datagram and execute arbitrary shell code as …

04 Mar 2026 Mobvoi

Details

CVE-2026-22285

4.4 MEDIUM 4.4

Dell Device Management Agent (DDMA), versions prior to 26.02, contain a Plaintext Storage of Password vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to …

04 Mar 2026 Dell

Details

CVE-2025-62879

4.9 MEDIUM 4.9

A vulnerability has been identified within the Rancher Backup Operator, resulting in the leakage of S3 tokens (both accessKey and secretKey) into the rancher-backup-operator pod's logs.

04 Mar 2026 Suse

Details

CVE-2025-59787

5.3 MEDIUM 5.3

2N Access Commander application version 3.4.2 and prior returns HTTP 500 Internal Server Error responses when receiving malformed or manipulated requests, indicating improper handling of invalid input and potential security …

04 Mar 2026 2N

Details

CVE-2025-59786

6.0 MEDIUM 6.0

2N Access Commander version 3.4.2 and prior improperly invalidates session tokens, allowing multiple session cookies to remain active after logout in web application.

04 Mar 2026 2N

Details

CVE-2025-59785

5.3 MEDIUM 5.3

Improper validation of API end-point in 2N Access Commander version 3.4.2 and prior allows attacker to bypass password policy for backup file encryption. This vulnerability can only be exploited after …

04 Mar 2026 2N

Details

CVE-2025-59784

6.9 MEDIUM 6.9

2N Access Commander version 3.4.1 and prior is vulnerable to log pollution. Certain parameters sent over API may be included in the logs without prior validation or sanitisation. This vulnerability …

04 Mar 2026 2N

Details

← Previous Page 872 of 3864/3864 Next →

Statistics

Total 38636

Critical 3366

High 12549

Menu

CVE Vulnerability Database

CVE-2025-15558

CVE-2026-26673

CVE-2026-26514

CVE-2026-26478

CVE-2026-22285

CVE-2025-62879

CVE-2025-59787

CVE-2025-59786

CVE-2025-59785

CVE-2025-59784

Statistics

Editor's Choice

Menu

CVE Vulnerability Database

Statistics

Editor's Choice

Stay informed on cybersecurity