🛡️ CVE Intelligence Center
Common Vulnerabilities & Exposures — Security Intelligence Database
| CVE ID | Severity | CVSS | Description | Status | Published |
|---|---|---|---|---|---|
| CVE-2026-24748 | High | 7.2 |
Kargo manages and automates the promotion of software artifacts. Prior to versions 1.8.7, 1.7.7, and 1.6.3, a bug was fo…
|
✅ Patch | Jan 27, 2026 |
| CVE-2026-21417 | High | 7.0 |
Dell CloudBoost Virtual Appliance, versions prior to 19.14.0.0, contains a Plaintext Storage of Password vulnerability. …
|
✅ Patch | Jan 27, 2026 |
| CVE-2026-1428 | High | 8.8 |
Single Sign-On Portal System developed by WellChoose has a OS Command Injection vulnerability, allowing authenticated re…
|
✅ Patch | Jan 26, 2026 |
| CVE-2026-24428 | High | 8.8 |
Shenzhen Tenda W30E V2 firmware versions up to and including V16.01.0.19(5037) contain an authorization flaw in the user…
|
✅ Patch | Jan 26, 2026 |
| CVE-2026-24440 | High | 8.8 |
Shenzhen Tenda W30E V2 firmware versions up to and including V16.01.0.19(5037) allow account passwords to be changed thr…
|
✅ Patch | Jan 26, 2026 |
| CVE-2025-14459 | High | 8.5 |
A flaw was found in KubeVirt Containerized Data Importer (CDI). This vulnerability allows a user to clone PersistentVolu…
|
✅ Patch | Jan 26, 2026 |
| CVE-2020-36952 | High | 7.8 |
IObit Uninstaller 10 Pro contains an unquoted service path vulnerability that allows local users to potentially execute …
|
✅ Patch | Jan 26, 2026 |
| CVE-2020-36953 | High | 7.8 |
MiniTool ShadowMaker 3.2 contains an unquoted service path vulnerability in the MTAgentService that allows local attacke…
|
✅ Patch | Jan 26, 2026 |
| CVE-2020-36957 | High | 7.8 |
PDF Complete 3.5.310.2002 contains an unquoted service path vulnerability in its pdfsvc.exe service configuration. Attac…
|
✅ Patch | Jan 26, 2026 |
| CVE-2020-36958 | High | 7.8 |
Kite 1.2020.1119.0 contains an unquoted service path vulnerability in the KiteService Windows service that allows local …
|
✅ Patch | Jan 26, 2026 |
| CVE-2020-36959 | High | 7.8 |
IDT PC Audio 1.0.6499.0 contains an unquoted service path vulnerability that allows local users to potentially execute a…
|
✅ Patch | Jan 26, 2026 |
| CVE-2026-24430 | High | 7.5 |
Shenzhen Tenda W30E V2 firmware versions up to and including V16.01.0.19(5037) disclose sensitive account credentials in…
|
✅ Patch | Jan 26, 2026 |
| CVE-2025-59473 | High | 7.2 |
SQL Injection vulnerability in the Structure for Admin authenticated user
|
✅ Patch | Jan 26, 2026 |
| CVE-2026-0810 | High | 7.1 |
A flaw was found in gix-date. The `gix_date::parse::TimeBuf::as_str` function can generate strings containing invalid no…
|
⚡ Exploit ✅ Patch | Jan 26, 2026 |
| CVE-2020-36933 | High | 7.8 |
HTC IPTInstaller 4.0.9 contains an unquoted service path vulnerability in the PassThru Service configuration. Attackers …
|
✅ Patch | Jan 25, 2026 |
| CVE-2020-36934 | High | 7.8 |
Deep Instinct Windows Agent 1.2.24.0 contains an unquoted service path vulnerability in the DeepNetworkService that allo…
|
✅ Patch | Jan 25, 2026 |
| CVE-2020-36935 | High | 7.8 |
KMSpico 17.1.0.0 contains an unquoted service path vulnerability in the Service KMSELDI configuration that allows local …
|
✅ Patch | Jan 25, 2026 |
| CVE-2020-36936 | High | 7.8 |
Magic Mouse 2 Utilities 2.20 contains an unquoted service path vulnerability in its Windows service configuration. Attac…
|
✅ Patch | Jan 25, 2026 |
| CVE-2020-36937 | High | 7.8 |
Microvirt MEMU Play 3.7.0 contains an unquoted service path vulnerability in the MEmusvc Windows service that allows loc…
|
✅ Patch | Jan 25, 2026 |
| CVE-2025-71162 | High | 7.8 |
In the Linux kernel, the following vulnerability has been resolved:
dmaengine: tegra-adma: Fix use-after-free
A use-af…
|
✅ Patch | Jan 25, 2026 |