🛡️ CVE Intelligence Center
Common Vulnerabilities & Exposures — Security Intelligence Database
| CVE ID | Severity | CVSS | Description | Status | Published |
|---|---|---|---|---|---|
| CVE-2026-20806 | Medium | 5.5 |
Access of resource using incompatible type ('type confusion') in Windows COM allows an authorized attacker to disclose i…
|
— | Apr 14, 2026 |
| CVE-2026-27285 | Medium | 5.5 |
InDesign Desktop versions 20.5.2, 21.2 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could…
|
— | Apr 14, 2026 |
| CVE-2026-32079 | Medium | 5.5 |
Exposure of sensitive information to an unauthorized actor in Windows File Explorer allows an authorized attacker to dis…
|
— | Apr 14, 2026 |
| CVE-2026-27931 | Medium | 5.5 |
Out-of-bounds read in Windows GDI allows an unauthorized attacker to disclose information locally.
|
— | Apr 14, 2026 |
| CVE-2026-27258 | Medium | 5.5 |
DNG SDK versions 1.7.1 2502 and earlier are affected by an out-of-bounds write vulnerability that could lead to applicat…
|
— | Apr 14, 2026 |
| CVE-2026-27930 | Medium | 5.5 |
Out-of-bounds read in Windows GDI allows an unauthorized attacker to disclose information locally.
|
— | Apr 14, 2026 |
| CVE-2026-27222 | Medium | 5.5 |
Bridge versions 16.0.2, 15.1.4 and earlier are affected by a Divide By Zero vulnerability that could lead to application…
|
— | Apr 14, 2026 |
| CVE-2026-32084 | Medium | 5.5 |
Exposure of sensitive information to an unauthorized actor in Windows File Explorer allows an authorized attacker to dis…
|
— | Apr 14, 2026 |
| CVE-2026-32081 | Medium | 5.5 |
Exposure of sensitive information to an unauthorized actor in Windows File Explorer allows an authorized attacker to dis…
|
— | Apr 14, 2026 |
| CVE-2026-34624 | Medium | 5.4 |
Adobe Experience Manager versions 6.5.24, FP11.7 and earlier are affected by a DOM-based Cross-Site Scripting (XSS) vuln…
|
— | Apr 14, 2026 |
| CVE-2026-34623 | Medium | 5.4 |
Adobe Experience Manager versions 6.5.24, FP11.7 and earlier are affected by a DOM-based Cross-Site Scripting (XSS) vuln…
|
— | Apr 14, 2026 |
| CVE-2026-34625 | Medium | 5.4 |
Adobe Experience Manager versions 6.5.24, FP11.7 and earlier are affected by a DOM-based Cross-Site Scripting (XSS) vuln…
|
— | Apr 14, 2026 |
| CVE-2026-27288 | Medium | 5.4 |
Adobe Experience Manager versions FP11.7 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability t…
|
— | Apr 14, 2026 |
| CVE-2025-15565 | Medium | 5.3 |
The Nexi XPay plugin for WordPress is vulnerable to unauthorized modification of data due to missing authorization check…
|
— | Apr 14, 2026 |
| CVE-2026-34262 | Medium | 5.0 |
Information Disclosure Vulnerability in SAP HANA Cockpit and HANA Database Explorer
|
— | Apr 14, 2026 |
| CVE-2026-21011 | Medium | 6.8 |
Incorrect privilege assignment in Bluetooth in Maintenance mode prior to SMR Apr-2026 Release 1 allows physical attacker…
|
— | Apr 13, 2026 |
| CVE-2026-21009 | Medium | 6.8 |
Improper check for exceptional conditions in Recents prior to SMR Apr-2026 Release 1 allows physical attacker to bypass …
|
— | Apr 13, 2026 |
| CVE-2026-21007 | Medium | 6.8 |
Improper check for exceptional conditions in Device Care prior to SMR Apr-2026 Release 1 allows physical attackers to by…
|
— | Apr 13, 2026 |
| CVE-2026-34864 | Medium | 6.8 |
Boundary-unlimited vulnerability in the application read module.
Impact: Successful exploitation of this vulnerability m…
|
— | Apr 13, 2026 |
| CVE-2026-34863 | Medium | 6.7 |
Out-of-bounds write vulnerability in the file system.
Impact: Successful exploitation of this vulnerability may affect a…
|
— | Apr 13, 2026 |