🛡️ CVE Intelligence Center
Common Vulnerabilities & Exposures — Security Intelligence Database
| CVE ID | Severity | CVSS | Description | Status | Published |
|---|---|---|---|---|---|
| CVE-2025-9907 | Medium | 6.7 |
A flaw was found in the Red Hat Ansible Automation Platform, Event-Driven Ansible (EDA) Event Stream API. This vulnerabi…
|
— | Feb 27, 2026 |
| CVE-2025-9908 | Medium | 6.7 |
A flaw was found in the Red Hat Ansible Automation Platform, Event-Driven Ansible (EDA) Event Streams. This vulnerabilit…
|
— | Feb 27, 2026 |
| CVE-2025-9909 | Medium | 6.7 |
A flaw was found in the Red Hat Ansible Automation Platform Gateway route creation component. This vulnerability allows …
|
— | Feb 27, 2026 |
| CVE-2026-27653 | Medium | 6.7 |
The installers for multiple products provided by Soliton Systems K.K. contain an issue with incorrect default permission…
|
— | Feb 27, 2026 |
| CVE-2026-1626 | Medium | 6.5 |
An attacker may exploit the use of weak CBC-based cipher suites in the device’s SSH service to potentially observe or ma…
|
— | Feb 27, 2026 |
| CVE-2026-1627 | Medium | 6.5 |
An attacker may exploit the use of outdated and weak MAC algorithms in the device’s SSH service to potentially compromis…
|
— | Feb 27, 2026 |
| CVE-2026-20733 | Medium | 6.5 |
Charging station authentication identifiers are publicly accessible via web-based mapping platforms.
|
— | Feb 27, 2026 |
| CVE-2026-22878 | Medium | 6.5 |
Charging station authentication identifiers are publicly accessible via web-based mapping platforms.
|
— | Feb 27, 2026 |
| CVE-2026-22890 | Medium | 6.5 |
Charging station authentication identifiers are publicly accessible via web-based mapping platforms.
|
— | Feb 27, 2026 |
| CVE-2026-24488 | Medium | 6.5 |
OpenEMR is a free and open source electronic health records and medical practice management application. In versions up …
|
— | Feb 27, 2026 |
| CVE-2026-25774 | Medium | 6.5 |
Charging station authentication identifiers are publicly accessible via web-based mapping platforms.
|
— | Feb 27, 2026 |
| CVE-2026-27734 | Medium | 6.5 |
Beszel is a server monitoring platform. Prior to version 0.18.2, the hub's authenticated API endpoints GET /api/beszel/c…
|
— | Feb 27, 2026 |
| CVE-2026-27753 | Medium | 6.5 |
SODOLA SL902-SWTGW124AS firmware versions through 200.1.20 contain an authentication bypass vulnerability that allows re…
|
— | Feb 27, 2026 |
| CVE-2026-27754 | Medium | 6.5 |
SODOLA SL902-SWTGW124AS firmware versions through 200.1.20 use the cryptographically broken MD5 hash function for sessio…
|
— | Feb 27, 2026 |
| CVE-2026-27773 | Medium | 6.5 |
Charging station authentication identifiers are publicly accessible via web-based mapping platforms.
|
— | Feb 27, 2026 |
| CVE-2026-27793 | Medium | 6.5 |
Seerr is an open-source media request and discovery manager for Jellyfin, Plex, and Emby. Prior to version 3.1.0, the `G…
|
— | Feb 27, 2026 |
| CVE-2026-28271 | Medium | 6.5 |
Kiteworks is a private data network (PDN). Prior to version 9.2.0, a vulnerability in Kiteworks configuration functional…
|
— | Feb 27, 2026 |
| CVE-2026-28352 | Medium | 6.5 |
Indico is an event management system that uses Flask-Multipass, a multi-backend authentication system for Flask. In vers…
|
— | Feb 27, 2026 |
| CVE-2026-28354 | Medium | 6.5 |
ClipBucket v5 is an open source video sharing platform. Prior to version 5.5.3 #59, collection item operations are vulne…
|
⚡ Exploit | Feb 27, 2026 |
| CVE-2026-3255 | Medium | 6.5 |
HTTP::Session2 versions before 1.12 for Perl for Perl may generate weak session ids using the rand() function.
The HTTP…
|
— | Feb 27, 2026 |