🛡️ CVE Intelligence Center
Common Vulnerabilities & Exposures — Security Intelligence Database
| CVE ID | Severity | CVSS | Description | Status | Published |
|---|---|---|---|---|---|
| CVE-2026-25570 | High | 7.4 |
A vulnerability has been identified in SICAM SIAPP SDK (All versions < V2.1.7). The SICAM SIAPP SDK does not perform che…
|
✅ Patch | Mar 10, 2026 |
| CVE-2026-25569 | High | 7.4 |
A vulnerability has been identified in SICAM SIAPP SDK (All versions < V2.1.7). An out-of-bounds write vulnerability exi…
|
✅ Patch | Mar 10, 2026 |
| CVE-2026-25167 | High | 7.4 |
Use after free in Microsoft Brokering File System allows an unauthorized attacker to elevate privileges locally.
|
✅ Patch | Mar 10, 2026 |
| CVE-2026-2364 | High | 7.3 |
If a legitimate user confirms a self-update prompt or initiate an installation of a CODESYS Development System, a low pr…
|
✅ Patch | Mar 10, 2026 |
| CVE-2026-2724 | High | 7.2 |
The Unlimited Elements for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the form entr…
|
✅ Patch | Mar 10, 2026 |
| CVE-2026-30958 | High | 7.2 |
OneUptime is a solution for monitoring and managing online services. Prior to 10.0.21, an unauthenticated path traversal…
|
⚡ Exploit ✅ Patch | Mar 10, 2026 |
| CVE-2026-1261 | High | 7.2 |
The MetForm Pro plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Quiz feature in all versions u…
|
✅ Patch | Mar 10, 2026 |
| CVE-2026-25170 | High | 7.0 |
Use after free in Windows Hyper-V allows an authorized attacker to elevate privileges locally.
|
✅ Patch | Mar 10, 2026 |
| CVE-2026-23667 | High | 7.0 |
Use after free in Broadcast DVR allows an authorized attacker to elevate privileges locally.
|
✅ Patch | Mar 10, 2026 |
| CVE-2026-23668 | High | 7.0 |
Concurrent execution using shared resource with improper synchronization ('race condition') in Microsoft Graphics Compon…
|
✅ Patch | Mar 10, 2026 |
| CVE-2026-23671 | High | 7.0 |
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Bluetooth RFCOM P…
|
✅ Patch | Mar 10, 2026 |
| CVE-2026-24285 | High | 7.0 |
Use after free in Windows Win32K allows an authorized attacker to elevate privileges locally.
|
✅ Patch | Mar 10, 2026 |
| CVE-2026-24296 | High | 7.0 |
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Device Associatio…
|
✅ Patch | Mar 10, 2026 |
| CVE-2026-24295 | High | 7.0 |
Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Device Associatio…
|
✅ Patch | Mar 10, 2026 |
| CVE-2026-25171 | High | 7.0 |
Use after free in Windows Authentication Methods allows an authorized attacker to elevate privileges locally.
|
✅ Patch | Mar 10, 2026 |
| CVE-2026-25178 | High | 7.0 |
Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges loca…
|
✅ Patch | Mar 10, 2026 |
| CVE-2026-25179 | High | 7.0 |
Improper validation of specified type of input in Windows Ancillary Function Driver for WinSock allows an authorized att…
|
✅ Patch | Mar 10, 2026 |
| CVE-2025-52468 | High | 8.8 |
Chamilo is a learning management system. Prior to version 1.11.30, an input validation vulnerability exists when importi…
|
⚡ Exploit ✅ Patch | Mar 2, 2026 |
| CVE-2026-21385 | High | 7.8 |
Memory corruption while using alignments for memory allocation.
|
⚡ Exploit ✅ Patch | Mar 2, 2026 |
| CVE-2025-64427 | High | 7.1 |
ZimaOS is a fork of CasaOS, an operating system for Zima devices and x86-64 systems with UEFI. In version 1.5.0 and prio…
|
⚡ Exploit ✅ Patch | Mar 2, 2026 |