🛡️ CVE Intelligence Center
Common Vulnerabilities & Exposures — Security Intelligence Database
| CVE ID | Severity | CVSS | Description | Status | Published |
|---|---|---|---|---|---|
| CVE-2026-21417 | High | 7.0 |
Dell CloudBoost Virtual Appliance, versions prior to 19.14.0.0, contains a Plaintext Storage of Password vulnerability. …
|
✅ Patch | Jan 27, 2026 |
| CVE-2026-21509 | Critical | 9.0 |
Microsoft Office Security Feature Bypass Vulnerability — Microsoft Office contains a security feature bypass vulnerabili…
|
⚡ Exploit ✅ Patch | Jan 26, 2026 |
| CVE-2026-23760 | Critical | 9.0 |
SmarterTools SmarterMail Authentication Bypass Using an Alternate Path or Channel Vulnerability — SmarterTools SmarterMa…
|
⚡ Exploit ✅ Patch | Jan 26, 2026 |
| CVE-2026-24061 | Critical | 9.0 |
GNU InetUtils Argument Injection Vulnerability — GNU InetUtils contains an argument injection vulnerability in telnetd t…
|
⚡ Exploit ✅ Patch | Jan 26, 2026 |
| CVE-2018-14634 | Critical | 9.0 |
Linux Kernel Integer Overflow Vulnerability — Linux Kernel contains an integer overflow vulnerability in the create_elf_…
|
⚡ Exploit ✅ Patch | Jan 26, 2026 |
| CVE-2025-52691 | Critical | 9.0 |
SmarterTools SmarterMail Unrestricted Upload of File with Dangerous Type Vulnerability — SmarterTools SmarterMail contai…
|
⚡ Exploit ✅ Patch | Jan 26, 2026 |
| CVE-2026-1428 | High | 8.8 |
Single Sign-On Portal System developed by WellChoose has a OS Command Injection vulnerability, allowing authenticated re…
|
✅ Patch | Jan 26, 2026 |
| CVE-2026-24428 | High | 8.8 |
Shenzhen Tenda W30E V2 firmware versions up to and including V16.01.0.19(5037) contain an authorization flaw in the user…
|
✅ Patch | Jan 26, 2026 |
| CVE-2026-24440 | High | 8.8 |
Shenzhen Tenda W30E V2 firmware versions up to and including V16.01.0.19(5037) allow account passwords to be changed thr…
|
✅ Patch | Jan 26, 2026 |
| CVE-2025-14459 | High | 8.5 |
A flaw was found in KubeVirt Containerized Data Importer (CDI). This vulnerability allows a user to clone PersistentVolu…
|
✅ Patch | Jan 26, 2026 |
| CVE-2020-36952 | High | 7.8 |
IObit Uninstaller 10 Pro contains an unquoted service path vulnerability that allows local users to potentially execute …
|
✅ Patch | Jan 26, 2026 |
| CVE-2020-36953 | High | 7.8 |
MiniTool ShadowMaker 3.2 contains an unquoted service path vulnerability in the MTAgentService that allows local attacke…
|
✅ Patch | Jan 26, 2026 |
| CVE-2020-36957 | High | 7.8 |
PDF Complete 3.5.310.2002 contains an unquoted service path vulnerability in its pdfsvc.exe service configuration. Attac…
|
✅ Patch | Jan 26, 2026 |
| CVE-2020-36958 | High | 7.8 |
Kite 1.2020.1119.0 contains an unquoted service path vulnerability in the KiteService Windows service that allows local …
|
✅ Patch | Jan 26, 2026 |
| CVE-2020-36959 | High | 7.8 |
IDT PC Audio 1.0.6499.0 contains an unquoted service path vulnerability that allows local users to potentially execute a…
|
✅ Patch | Jan 26, 2026 |
| CVE-2026-24430 | High | 7.5 |
Shenzhen Tenda W30E V2 firmware versions up to and including V16.01.0.19(5037) disclose sensitive account credentials in…
|
✅ Patch | Jan 26, 2026 |
| CVE-2025-59473 | High | 7.2 |
SQL Injection vulnerability in the Structure for Admin authenticated user
|
✅ Patch | Jan 26, 2026 |
| CVE-2026-0810 | High | 7.1 |
A flaw was found in gix-date. The `gix_date::parse::TimeBuf::as_str` function can generate strings containing invalid no…
|
⚡ Exploit ✅ Patch | Jan 26, 2026 |
| CVE-2020-36933 | High | 7.8 |
HTC IPTInstaller 4.0.9 contains an unquoted service path vulnerability in the PassThru Service configuration. Attackers …
|
✅ Patch | Jan 25, 2026 |
| CVE-2020-36934 | High | 7.8 |
Deep Instinct Windows Agent 1.2.24.0 contains an unquoted service path vulnerability in the DeepNetworkService that allo…
|
✅ Patch | Jan 25, 2026 |