🛡️ CVE Intelligence Center
Common Vulnerabilities & Exposures — Security Intelligence Database
| CVE ID | Severity | CVSS | Description | Status | Published |
|---|---|---|---|---|---|
| CVE-2026-34626 | Medium | 6.3 |
Acrobat Reader versions 26.001.21411, 24.001.30360, 24.001.30362 and earlier are affected by an Improperly Controlled Mo…
|
— | Apr 14, 2026 |
| CVE-2026-32072 | Medium | 6.2 |
Improper authentication in Windows Active Directory allows an unauthorized attacker to perform spoofing locally.
|
— | Apr 14, 2026 |
| CVE-2026-32196 | Medium | 6.1 |
Improper neutralization of input during web page generation ('cross-site scripting') in Windows Admin Center allows an u…
|
— | Apr 14, 2026 |
| CVE-2026-21331 | Medium | 6.1 |
Adobe Connect versions 2025.3, 12.10 and earlier are affected by a reflected Cross-Site Scripting (XSS) vulnerability. I…
|
— | Apr 14, 2026 |
| CVE-2026-27674 | Medium | 6.1 |
Due to a Code Injection vulnerability in SAP NetWeaver Application Server Java (Web Dynpro Java), an unauthenticated att…
|
— | Apr 14, 2026 |
| CVE-2026-0512 | Medium | 6.1 |
Due to a Cross-Site Scripting (XSS) vulnerability in the SAP Supplier Relationship Management (SICF Handler in SRM Catal…
|
— | Apr 14, 2026 |
| CVE-2026-32088 | Medium | 6.1 |
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Biometric Service…
|
— | Apr 14, 2026 |
| CVE-2026-26169 | Medium | 6.1 |
Buffer over-read in Windows Kernel Memory allows an authorized attacker to disclose information locally.
|
— | Apr 14, 2026 |
| CVE-2026-34257 | Medium | 6.1 |
Due to an Open Redirect vulnerability in SAP NetWeaver Application Server ABAP, an unauthenticated attacker could craft …
|
— | Apr 14, 2026 |
| CVE-2026-33822 | Medium | 6.1 |
Out-of-bounds read in Microsoft Office Word allows an unauthorized attacker to disclose information locally.
|
— | Apr 14, 2026 |
| CVE-2026-34614 | Medium | 6.1 |
Adobe Connect versions 2025.3, 12.10 and earlier are affected by a reflected Cross-Site Scripting (XSS) vulnerability. I…
|
— | Apr 14, 2026 |
| CVE-2026-32226 | Medium | 5.9 |
Concurrent execution using shared resource with improper synchronization ('race condition') in .NET Framework allows an …
|
— | Apr 14, 2026 |
| CVE-2026-23653 | Medium | 5.7 |
Improper neutralization of special elements used in a command ('command injection') in GitHub Copilot and Visual Studio …
|
— | Apr 14, 2026 |
| CVE-2026-23670 | Medium | 5.7 |
Untrusted pointer dereference in Windows Virtualization-Based Security (VBS) Enclave allows an authorized attacker to by…
|
— | Apr 14, 2026 |
| CVE-2026-27258 | Medium | 5.5 |
DNG SDK versions 1.7.1 2502 and earlier are affected by an out-of-bounds write vulnerability that could lead to applicat…
|
— | Apr 14, 2026 |
| CVE-2026-27300 | Medium | 5.5 |
Adobe Framemaker versions 2022.8 and earlier are affected by an Access of Uninitialized Pointer vulnerability that could…
|
— | Apr 14, 2026 |
| CVE-2026-20806 | Medium | 5.5 |
Access of resource using incompatible type ('type confusion') in Windows COM allows an authorized attacker to disclose i…
|
— | Apr 14, 2026 |
| CVE-2026-27286 | Medium | 5.5 |
InDesign Desktop versions 20.5.2, 21.2 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could…
|
— | Apr 14, 2026 |
| CVE-2026-27285 | Medium | 5.5 |
InDesign Desktop versions 20.5.2, 21.2 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could…
|
— | Apr 14, 2026 |
| CVE-2026-27301 | Medium | 5.5 |
Adobe Framemaker versions 2022.8 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could lead …
|
— | Apr 14, 2026 |