🛡️ CVE Intelligence Center
Common Vulnerabilities & Exposures — Security Intelligence Database
| CVE ID | Severity | CVSS | Description | Status | Published |
|---|---|---|---|---|---|
| CVE-2026-24295 | High | 7.0 |
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Device Associatio…
|
✅ Patch | Mar 10, 2026 |
| CVE-2026-24296 | High | 7.0 |
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Device Associatio…
|
✅ Patch | Mar 10, 2026 |
| CVE-2026-25170 | High | 7.0 |
Use after free in Windows Hyper-V allows an authorized attacker to elevate privileges locally.
|
✅ Patch | Mar 10, 2026 |
| CVE-2026-25171 | High | 7.0 |
Use after free in Windows Authentication Methods allows an authorized attacker to elevate privileges locally.
|
✅ Patch | Mar 10, 2026 |
| CVE-2026-25178 | High | 7.0 |
Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges loca…
|
✅ Patch | Mar 10, 2026 |
| CVE-2026-25179 | High | 7.0 |
Improper validation of specified type of input in Windows Ancillary Function Driver for WinSock allows an authorized att…
|
✅ Patch | Mar 10, 2026 |
| CVE-2021-22054 | Critical | 9.8 |
Omnissa Workspace One UEM — CVE-2021-22054
Omnissa Workspace One UEM formerly known as VMware Workspace One UEM contains…
|
— | Mar 9, 2026 |
| CVE-2025-26399 | Critical | 9.8 |
SolarWinds Web Help Desk — CVE-2025-26399
SolarWinds Web Help Desk contain a deserialization of untrusted data vulnerabi…
|
— | Mar 9, 2026 |
| CVE-2017-7921 | Critical | 9.0 |
Hikvision Multiple Products Improper Authentication Vulnerability — Multiple Hikvision products contain an improper auth…
|
⚡ Exploit ✅ Patch | Mar 5, 2026 |
| CVE-2021-22681 | Critical | 9.0 |
Rockwell Multiple Products Insufficient Protected Credentials Vulnerability — Multiple Rockwell products contain an insu…
|
⚡ Exploit ✅ Patch | Mar 5, 2026 |
| CVE-2021-30952 | Critical | 9.0 |
Apple Multiple Products Integer Overflow or Wraparound Vulnerability — Apple tvOS, macOS, Safari, iPadOS and watchOS con…
|
⚡ Exploit ✅ Patch | Mar 5, 2026 |
| CVE-2023-41974 | Critical | 9.0 |
Apple iOS and iPadOS Use-After-Free Vulnerability — Apple iOS and iPadOS contain a use-after-free vulnerability. An app …
|
⚡ Exploit ✅ Patch | Mar 5, 2026 |
| CVE-2023-43000 | Critical | 9.0 |
Apple Multiple products Use-After-Free Vulnerability — Apple macOS, iOS, iPadOS, and Safari 16.6 contain a use-after-fre…
|
⚡ Exploit ✅ Patch | Mar 5, 2026 |
| CVE-2026-1487 | Medium | 6.5 |
The LatePoint – Calendar Booking Plugin for Appointments and Events plugin for WordPress is vulnerable to SQL Injection …
|
— | Mar 3, 2026 |
| CVE-2026-3343 | Medium | 6.1 |
A reflected cross-site scripting (XSS) vulnerability in the Fireware OS Web UI enabled execution of malicious JavaScript…
|
— | Mar 3, 2026 |
| CVE-2026-1336 | Medium | 5.3 |
The AI ChatBot with ChatGPT and Content Generator by AYS plugin for WordPress is vulnerable to unauthorized access and m…
|
— | Mar 3, 2026 |
| CVE-2025-52468 | High | 8.8 |
Chamilo is a learning management system. Prior to version 1.11.30, an input validation vulnerability exists when importi…
|
⚡ Exploit ✅ Patch | Mar 2, 2026 |
| CVE-2026-21385 | High | 7.8 |
Memory corruption while using alignments for memory allocation.
|
⚡ Exploit ✅ Patch | Mar 2, 2026 |
| CVE-2025-64427 | High | 7.1 |
ZimaOS is a fork of CasaOS, an operating system for Zima devices and x86-64 systems with UEFI. In version 1.5.0 and prio…
|
⚡ Exploit ✅ Patch | Mar 2, 2026 |
| CVE-2025-47371 | Medium | 6.5 |
Transient DOS when an LTE RLC packet with invalid TB is received by UE.
|
— | Mar 2, 2026 |