🛡️ CVE Intelligence Center
Common Vulnerabilities & Exposures — Security Intelligence Database
| CVE ID | Severity | CVSS | Description | Status | Published |
|---|---|---|---|---|---|
| CVE-2026-21331 | Medium | 6.1 |
Adobe Connect versions 2025.3, 12.10 and earlier are affected by a reflected Cross-Site Scripting (XSS) vulnerability. I…
|
— | Apr 14, 2026 |
| CVE-2026-34614 | Medium | 6.1 |
Adobe Connect versions 2025.3, 12.10 and earlier are affected by a reflected Cross-Site Scripting (XSS) vulnerability. I…
|
— | Apr 14, 2026 |
| CVE-2026-26169 | Medium | 6.1 |
Buffer over-read in Windows Kernel Memory allows an authorized attacker to disclose information locally.
|
— | Apr 14, 2026 |
| CVE-2026-27674 | Medium | 6.1 |
Due to a Code Injection vulnerability in SAP NetWeaver Application Server Java (Web Dynpro Java), an unauthenticated att…
|
— | Apr 14, 2026 |
| CVE-2026-0512 | Medium | 6.1 |
Due to a Cross-Site Scripting (XSS) vulnerability in the SAP Supplier Relationship Management (SICF Handler in SRM Catal…
|
— | Apr 14, 2026 |
| CVE-2026-32226 | Medium | 5.9 |
Concurrent execution using shared resource with improper synchronization ('race condition') in .NET Framework allows an …
|
— | Apr 14, 2026 |
| CVE-2026-23670 | Medium | 5.7 |
Untrusted pointer dereference in Windows Virtualization-Based Security (VBS) Enclave allows an authorized attacker to by…
|
— | Apr 14, 2026 |
| CVE-2026-23653 | Medium | 5.7 |
Improper neutralization of special elements used in a command ('command injection') in GitHub Copilot and Visual Studio …
|
— | Apr 14, 2026 |
| CVE-2026-27258 | Medium | 5.5 |
DNG SDK versions 1.7.1 2502 and earlier are affected by an out-of-bounds write vulnerability that could lead to applicat…
|
— | Apr 14, 2026 |
| CVE-2026-27301 | Medium | 5.5 |
Adobe Framemaker versions 2022.8 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could lead …
|
— | Apr 14, 2026 |
| CVE-2026-32084 | Medium | 5.5 |
Exposure of sensitive information to an unauthorized actor in Windows File Explorer allows an authorized attacker to dis…
|
— | Apr 14, 2026 |
| CVE-2026-32085 | Medium | 5.5 |
Exposure of sensitive information to an unauthorized actor in Windows Remote Procedure Call allows an authorized attacke…
|
— | Apr 14, 2026 |
| CVE-2026-27930 | Medium | 5.5 |
Out-of-bounds read in Windows GDI allows an unauthorized attacker to disclose information locally.
|
— | Apr 14, 2026 |
| CVE-2026-32081 | Medium | 5.5 |
Exposure of sensitive information to an unauthorized actor in Windows File Explorer allows an authorized attacker to dis…
|
— | Apr 14, 2026 |
| CVE-2026-32079 | Medium | 5.5 |
Exposure of sensitive information to an unauthorized actor in Windows File Explorer allows an authorized attacker to dis…
|
— | Apr 14, 2026 |
| CVE-2026-20806 | Medium | 5.5 |
Access of resource using incompatible type ('type confusion') in Windows COM allows an authorized attacker to disclose i…
|
— | Apr 14, 2026 |
| CVE-2026-27300 | Medium | 5.5 |
Adobe Framemaker versions 2022.8 and earlier are affected by an Access of Uninitialized Pointer vulnerability that could…
|
— | Apr 14, 2026 |
| CVE-2026-27222 | Medium | 5.5 |
Bridge versions 16.0.2, 15.1.4 and earlier are affected by a Divide By Zero vulnerability that could lead to application…
|
— | Apr 14, 2026 |
| CVE-2026-27931 | Medium | 5.5 |
Out-of-bounds read in Windows GDI allows an unauthorized attacker to disclose information locally.
|
— | Apr 14, 2026 |
| CVE-2026-27285 | Medium | 5.5 |
InDesign Desktop versions 20.5.2, 21.2 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could…
|
— | Apr 14, 2026 |