🛡️ CVE Intelligence Center
Common Vulnerabilities & Exposures — Security Intelligence Database
| CVE ID | Severity | CVSS | Description | Status | Published |
|---|---|---|---|---|---|
| CVE-2026-24152 | High | 7.8 |
NVIDIA Megatron-LM contains a vulnerability in checkpoint loading where an Attacker may cause an RCE by convincing a use…
|
— | Mar 24, 2026 |
| CVE-2026-24150 | High | 7.8 |
NVIDIA Megatron-LM contains a vulnerability in checkpoint loading where an Attacker may cause an RCE by convincing a use…
|
— | Mar 24, 2026 |
| CVE-2026-27784 | High | 7.8 |
The 32-bit implementation of NGINX Open Source has a vulnerability in the ngx_http_mp4_module module, which might allow …
|
— | Mar 24, 2026 |
| CVE-2026-24151 | High | 7.8 |
NVIDIA Megatron-LM contains a vulnerability in inferencing where an Attacker may cause an RCE by convincing a user to lo…
|
— | Mar 24, 2026 |
| CVE-2026-32647 | High | 7.8 |
NGINX Open Source and NGINX Plus have a vulnerability in the ngx_http_mp4_module module, which might allow an attacker t…
|
— | Mar 24, 2026 |
| CVE-2025-33248 | High | 7.8 |
NVIDIA Megatron-LM contains a vulnerability in the hybrid conversion script where an Attacker may cause an RCE by convin…
|
— | Mar 24, 2026 |
| CVE-2026-4775 | High | 7.8 |
A flaw was found in the libtiff library. A remote attacker could exploit a signed integer overflow vulnerability in the …
|
— | Mar 24, 2026 |
| CVE-2025-33247 | High | 7.8 |
NVIDIA Megatron LM contains a vulnerability in quantization configuration loading, which could allow remote code executi…
|
— | Mar 24, 2026 |
| CVE-2026-33241 | High | 7.5 |
Salvo is a Rust web framework. Prior to version 0.89.3, Salvo's form data parsing implementations (`form_data()` method …
|
⚡ Exploit ✅ Patch | Mar 24, 2026 |
| CVE-2026-4714 | High | 7.5 |
Incorrect boundary conditions in the Audio/Video component. This vulnerability affects Firefox < 149, Firefox ESR < 140.…
|
— | Mar 24, 2026 |
| CVE-2026-33497 | High | 7.5 |
Langflow is a tool for building and deploying AI-powered agents and workflows. Prior to version 1.7.1, in the download_p…
|
⚡ Exploit | Mar 24, 2026 |
| CVE-2026-30653 | High | 7.5 |
An issue in Free5GC v.4.2.0 and before allows a remote attacker to cause a denial of service via the function HandleAuth…
|
⚡ Exploit | Mar 24, 2026 |
| CVE-2026-33498 | High | 7.5 |
Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. Prior to version…
|
✅ Patch | Mar 24, 2026 |
| CVE-2026-27651 | High | 7.5 |
When the ngx_mail_auth_http_module module is enabled on NGINX Plus or NGINX Open Source, undisclosed requests can cause …
|
— | Mar 24, 2026 |
| CVE-2026-4719 | High | 7.5 |
Incorrect boundary conditions in the Graphics: Text component. This vulnerability affects Firefox < 149, Firefox ESR < 1…
|
— | Mar 24, 2026 |
| CVE-2026-4726 | High | 7.5 |
Denial-of-service in the XML component. This vulnerability affects Firefox < 149 and Thunderbird < 149.
|
— | Mar 24, 2026 |
| CVE-2026-4727 | High | 7.5 |
Denial-of-service in the Libraries component in NSS. This vulnerability affects Firefox < 149 and Thunderbird < 149.
|
— | Mar 24, 2026 |
| CVE-2026-3509 | High | 7.5 |
An unauthenticated remote attacker may be able to control the format string of messages processed by the Audit Log of th…
|
— | Mar 24, 2026 |
| CVE-2026-4704 | High | 7.5 |
Denial-of-service in the WebRTC: Signaling component. This vulnerability affects Firefox < 149, Firefox ESR < 140.9, Thu…
|
— | Mar 24, 2026 |
| CVE-2026-33306 | High | 7.5 |
bcrypt-ruby is a Ruby binding for the OpenBSD bcrypt() password hashing algorithm. Prior to version 3.1.22, an integer o…
|
✅ Patch | Mar 24, 2026 |