🛡️ CVE Intelligence Center
Common Vulnerabilities & Exposures — Security Intelligence Database
| CVE ID | Severity | CVSS | Description | Status | Published |
|---|---|---|---|---|---|
| CVE-2026-20631 | High | 8.8 |
A logic issue was addressed with improved checks. This issue is fixed in macOS Tahoe 26.4. A user may be able to elevate…
|
— | Mar 25, 2026 |
| CVE-2026-23514 | High | 8.8 |
Kiteworks is a private data network (PDN). Versions 9.2.0 and 9.2.1 of Kiteworks Core have an access control vulnerabili…
|
— | Mar 25, 2026 |
| CVE-2026-33348 | High | 8.7 |
OpenEMR is a free and open source electronic health records and medical practice management application. Users with the …
|
⚡ Exploit ✅ Patch | Mar 25, 2026 |
| CVE-2026-20698 | High | 7.8 |
The issue was addressed with improved memory handling. This issue is fixed in iOS 26.4 and iPadOS 26.4, macOS Tahoe 26.4…
|
— | Mar 25, 2026 |
| CVE-2026-33913 | High | 7.7 |
OpenEMR is a free and open source electronic health records and medical practice management application. Prior to versio…
|
⚡ Exploit ✅ Patch | Mar 25, 2026 |
| CVE-2026-2995 | High | 7.7 |
GitLab has remediated an issue in GitLab EE affecting all versions from 15.4 before 18.8.7, 18.9 before 18.9.3, and 18.1…
|
— | Mar 25, 2026 |
| CVE-2026-24750 | High | 7.6 |
Kiteworks is a private data network (PDN). In Kiteworks Secure Data Forms prior to version 9.2.1, an authenticated attac…
|
— | Mar 25, 2026 |
| CVE-2026-33247 | High | 7.4 |
NATS-Server is a High-Performance server for NATS.io, a cloud and edge native messaging system. Prior to versions 2.11.1…
|
— | Mar 25, 2026 |
| CVE-2026-33217 | High | 7.1 |
NATS-Server is a High-Performance server for NATS.io, a cloud and edge native messaging system. Prior to versions 2.11.1…
|
— | Mar 25, 2026 |
| CVE-2025-36258 | High | 7.1 |
IBM InfoSphere Information Server 11.7.0.0 through 11.7.1.6 product stores user credentials and other sensitive informat…
|
— | Mar 25, 2026 |
| CVE-2025-14917 | Medium | 6.7 |
IBM WebSphere Application Server - Liberty 17.0.0.3 through 26.0.0.3 IBM WebSphere Application Server Liberty could prov…
|
— | Mar 25, 2026 |
| CVE-2026-3119 | Medium | 6.5 |
Under certain conditions, `named` may crash when processing a correctly signed query containing a TKEY record. The affec…
|
— | Mar 25, 2026 |
| CVE-2025-14807 | Medium | 6.5 |
IBM InfoSphere Information Server 11.7.0.0 through 11.7.1.6 is vulnerable to HTTP header injection, caused by improper v…
|
— | Mar 25, 2026 |
| CVE-2025-14790 | Medium | 6.5 |
IBM InfoSphere Information Server 11.7.0.0 through 11.7.1.6 could allow an attacker to obtain sensitive information due …
|
— | Mar 25, 2026 |
| CVE-2026-23635 | Medium | 6.5 |
Kiteworks is a private data network (PDN). In Kiteworks Secure Data Forms prior to version 9.2.1, a misconfiguration of …
|
— | Mar 25, 2026 |
| CVE-2026-32120 | Medium | 6.5 |
OpenEMR is a free and open source electronic health records and medical practice management application. Prior to versio…
|
⚡ Exploit ✅ Patch | Mar 25, 2026 |
| CVE-2025-14915 | Medium | 6.5 |
IBM WebSphere Application Server - Liberty 17.0.0.3 through 26.0.0.3 IBM WebSphere Application Server Liberty is affecte…
|
— | Mar 25, 2026 |
| CVE-2026-20110 | Medium | 6.5 |
A vulnerability in the CLI of Cisco IOS XE Software could allow an authenticated, local attacker to cause a denial of se…
|
— | Mar 25, 2026 |
| CVE-2026-20083 | Medium | 6.5 |
A vulnerability in the Secure Copy Protocol (SCP) server feature of Cisco IOS XE Software could allow an authenticated, …
|
— | Mar 25, 2026 |
| CVE-2026-1014 | Medium | 6.5 |
IBM InfoSphere Information Server 11.7.0.0 through 11.7.1.6 is vulnerable to exposure of sensitive information via JSON …
|
— | Mar 25, 2026 |