🛡️ CVE Intelligence Center
Common Vulnerabilities & Exposures — Security Intelligence Database
| CVE ID | Severity | CVSS | Description | Status | Published |
|---|---|---|---|---|---|
| CVE-2026-25569 | High | 7.4 |
A vulnerability has been identified in SICAM SIAPP SDK (All versions < V2.1.7). An out-of-bounds write vulnerability exi…
|
✅ Patch | Mar 10, 2026 |
| CVE-2026-25570 | High | 7.4 |
A vulnerability has been identified in SICAM SIAPP SDK (All versions < V2.1.7). The SICAM SIAPP SDK does not perform che…
|
✅ Patch | Mar 10, 2026 |
| CVE-2026-25573 | High | 7.4 |
A vulnerability has been identified in SICAM SIAPP SDK (All versions < V2.1.7). The affected application builds shell co…
|
✅ Patch | Mar 10, 2026 |
| CVE-2026-2364 | High | 7.3 |
If a legitimate user confirms a self-update prompt or initiate an installation of a CODESYS Development System, a low pr…
|
✅ Patch | Mar 10, 2026 |
| CVE-2026-1261 | High | 7.2 |
The MetForm Pro plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Quiz feature in all versions u…
|
✅ Patch | Mar 10, 2026 |
| CVE-2026-2724 | High | 7.2 |
The Unlimited Elements for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the form entr…
|
✅ Patch | Mar 10, 2026 |
| CVE-2026-30958 | High | 7.2 |
OneUptime is a solution for monitoring and managing online services. Prior to 10.0.21, an unauthenticated path traversal…
|
⚡ Exploit ✅ Patch | Mar 10, 2026 |
| CVE-2026-23667 | High | 7.0 |
Use after free in Broadcast DVR allows an authorized attacker to elevate privileges locally.
|
✅ Patch | Mar 10, 2026 |
| CVE-2026-23668 | High | 7.0 |
Concurrent execution using shared resource with improper synchronization ('race condition') in Microsoft Graphics Compon…
|
✅ Patch | Mar 10, 2026 |
| CVE-2026-23671 | High | 7.0 |
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Bluetooth RFCOM P…
|
✅ Patch | Mar 10, 2026 |
| CVE-2026-24285 | High | 7.0 |
Use after free in Windows Win32K allows an authorized attacker to elevate privileges locally.
|
✅ Patch | Mar 10, 2026 |
| CVE-2026-24295 | High | 7.0 |
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Device Associatio…
|
✅ Patch | Mar 10, 2026 |
| CVE-2026-24296 | High | 7.0 |
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Device Associatio…
|
✅ Patch | Mar 10, 2026 |
| CVE-2026-25170 | High | 7.0 |
Use after free in Windows Hyper-V allows an authorized attacker to elevate privileges locally.
|
✅ Patch | Mar 10, 2026 |
| CVE-2026-25171 | High | 7.0 |
Use after free in Windows Authentication Methods allows an authorized attacker to elevate privileges locally.
|
✅ Patch | Mar 10, 2026 |
| CVE-2026-25178 | High | 7.0 |
Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges loca…
|
✅ Patch | Mar 10, 2026 |
| CVE-2026-25179 | High | 7.0 |
Improper validation of specified type of input in Windows Ancillary Function Driver for WinSock allows an authorized att…
|
✅ Patch | Mar 10, 2026 |
| CVE-2021-22054 | Critical | 9.8 |
Omnissa Workspace One UEM — CVE-2021-22054
Omnissa Workspace One UEM formerly known as VMware Workspace One UEM contains…
|
— | Mar 9, 2026 |
| CVE-2025-26399 | Critical | 9.8 |
SolarWinds Web Help Desk — CVE-2025-26399
SolarWinds Web Help Desk contain a deserialization of untrusted data vulnerabi…
|
— | Mar 9, 2026 |
| CVE-2017-7921 | Critical | 9.0 |
Hikvision Multiple Products Improper Authentication Vulnerability — Multiple Hikvision products contain an improper auth…
|
⚡ Exploit ✅ Patch | Mar 5, 2026 |