🛡️ CVE Intelligence Center
Common Vulnerabilities & Exposures — Security Intelligence Database
| CVE ID | Severity | CVSS | Description | Status | Published |
|---|---|---|---|---|---|
| CVE-2025-68701 | High | 7.5 |
Jervis is a library for Job DSL plugin scripts and shared Jenkins pipeline libraries. Prior to 2.2, Jervis uses determin…
|
✅ Patch | Jan 13, 2026 |
| CVE-2025-68702 | High | 7.5 |
Jervis is a library for Job DSL plugin scripts and shared Jenkins pipeline libraries. Prior to 2.2, Jervis uses padLeft(…
|
✅ Patch | Jan 13, 2026 |
| CVE-2025-68703 | High | 7.5 |
Jervis is a library for Job DSL plugin scripts and shared Jenkins pipeline libraries. Prior to 2.2, the salt is derived …
|
✅ Patch | Jan 13, 2026 |
| CVE-2025-68704 | High | 7.5 |
Jervis is a library for Job DSL plugin scripts and shared Jenkins pipeline libraries. Prior to 2.2, Jervis uses java.uti…
|
✅ Patch | Jan 13, 2026 |
| CVE-2025-68931 | High | 7.5 |
Jervis is a library for Job DSL plugin scripts and shared Jenkins pipeline libraries. Prior to 2.2, AES/CBC/PKCS5Padding…
|
✅ Patch | Jan 13, 2026 |
| CVE-2025-70753 | High | 7.5 |
Tenda AX-1806 v1.0.0.1 was discovered to contain a stack overflow in the security_5g parameter of the sub_4CA50 function…
|
⚡ Exploit ✅ Patch | Jan 13, 2026 |
| CVE-2025-71024 | High | 7.5 |
Tenda AX-3 v16.03.12.10_CN was discovered to contain a stack overflow in the serviceName2 parameter of the fromAdvSetMac…
|
⚡ Exploit ✅ Patch | Jan 13, 2026 |
| CVE-2025-71025 | High | 7.5 |
Tenda AX-3 v16.03.12.10_CN was discovered to contain a stack overflow in the cloneType2 parameter of the fromAdvSetMacMt…
|
⚡ Exploit ✅ Patch | Jan 13, 2026 |
| CVE-2025-71026 | High | 7.5 |
Tenda AX-3 v16.03.12.10_CN was discovered to contain a stack overflow in the wanSpeed2 parameter of the fromAdvSetMacMtu…
|
⚡ Exploit ✅ Patch | Jan 13, 2026 |
| CVE-2025-71027 | High | 7.5 |
Tenda AX-3 v16.03.12.10_CN was discovered to contain a stack overflow in the wanMTU2 parameter of the fromAdvSetMacMtuWa…
|
⚡ Exploit ✅ Patch | Jan 13, 2026 |
| CVE-2026-20965 | High | 7.5 |
Improper verification of cryptographic signature in Windows Admin Center allows an authorized attacker to elevate privil…
|
✅ Patch | Jan 13, 2026 |
| CVE-2026-21226 | High | 7.5 |
Deserialization of untrusted data in Azure Core shared client library for Python allows an authorized attacker to execut…
|
✅ Patch | Jan 13, 2026 |
| CVE-2026-22862 | High | 7.5 |
go-ethereum (geth) is a golang execution layer implementation of the Ethereum protocol. A vulnerable node can be forced …
|
✅ Patch | Jan 13, 2026 |
| CVE-2026-22868 | High | 7.5 |
go-ethereum (geth) is a golang execution layer implementation of the Ethereum protocol. A vulnerable node can be forced …
|
✅ Patch | Jan 13, 2026 |
| CVE-2026-22870 | High | 7.5 |
GuardDog is a CLI tool to identify malicious PyPI packages. Prior to 2.7.1, GuardDog's safe_extract() function does not …
|
⚡ Exploit ✅ Patch | Jan 13, 2026 |
| CVE-2022-50806 | High | 7.2 |
4images 1.9 contains a remote command execution vulnerability that allows authenticated administrators to inject reverse…
|
⚡ Exploit ✅ Patch | Jan 13, 2026 |
| CVE-2022-50907 | High | 7.2 |
e107 CMS version 3.2.1 contains a file upload vulnerability that allows authenticated administrative users to bypass upl…
|
⚡ Exploit ✅ Patch | Jan 13, 2026 |
| CVE-2022-50908 | High | 7.2 |
Mailhog 1.0.1 contains a stored cross-site scripting vulnerability that allows attackers to inject malicious scripts thr…
|
✅ Patch | Jan 13, 2026 |
| CVE-2022-50916 | High | 7.2 |
e107 CMS version 3.2.1 contains a file upload vulnerability that allows authenticated administrators to override server …
|
⚡ Exploit ✅ Patch | Jan 13, 2026 |
| CVE-2026-21219 | High | 7.0 |
Use after free in Inbox COM Objects allows an unauthorized attacker to execute code locally.
|
✅ Patch | Jan 13, 2026 |