🛡️ CVE Intelligence Center
Common Vulnerabilities & Exposures — Security Intelligence Database
| CVE ID | Severity | CVSS | Description | Status | Published |
|---|---|---|---|---|---|
| CVE-2025-69274 | High | 8.8 |
Authorization Bypass Through User-Controlled Key vulnerability in Broadcom DX NetOps Spectrum on Windows, Linux allows P…
|
✅ Patch | Jan 12, 2026 |
| CVE-2025-69276 | High | 8.8 |
Deserialization of Untrusted Data vulnerability in Broadcom DX NetOps Spectrum on Windows, Linux allows Object Injection…
|
✅ Patch | Jan 12, 2026 |
| CVE-2026-0854 | High | 8.8 |
Certain DVR/NVR models developed by Merit LILIN has a OS Command Injection vulnerability, allowing authenticated remote …
|
✅ Patch | Jan 12, 2026 |
| CVE-2026-0855 | High | 8.8 |
Certain IP Camera models developed by Merit LILIN has a OS Command Injection vulnerability, allowing authenticated remot…
|
✅ Patch | Jan 12, 2026 |
| CVE-2026-22799 | High | 8.8 |
Emlog is an open source website building system. emlog v2.6.1 and earlier exposes a REST API endpoint (/index.php?rest-a…
|
⚡ Exploit ✅ Patch | Jan 12, 2026 |
| CVE-2025-71063 | High | 8.2 |
Errands before 46.2.10 does not verify TLS certificates for CalDAV servers.
|
✅ Patch | Jan 12, 2026 |
| CVE-2025-41077 | High | 8.1 |
IDOR vulnerability has been found in Viafirma Inbox v4.5.13 that allows any authenticated user without privileges in the…
|
✅ Patch | Jan 12, 2026 |
| CVE-2025-41078 | High | 8.1 |
Weaknesses in the authorization mechanisms of Viafirma Documents v3.7.129 allow an authenticated user without privileges…
|
✅ Patch | Jan 12, 2026 |
| CVE-2024-14021 | High | 7.8 |
LlamaIndex (run-llama/llama_index) versions up to and including 0.11.6 contain an unsafe deserialization vulnerability i…
|
⚡ Exploit ✅ Patch | Jan 12, 2026 |
| CVE-2024-58339 | High | 7.5 |
LlamaIndex (run-llama/llama_index) versions up to and including 0.12.2 contain an uncontrolled resource consumption vuln…
|
⚡ Exploit ✅ Patch | Jan 12, 2026 |
| CVE-2024-58340 | High | 7.5 |
LangChain versions up to and including 0.3.1 contain a regular expression denial-of-service (ReDoS) vulnerability in the…
|
⚡ Exploit ✅ Patch | Jan 12, 2026 |
| CVE-2025-15514 | High | 7.5 |
Ollama 0.11.5-rc0 through current version 0.13.5 contain a null pointer dereference vulnerability in the multi-modal mod…
|
⚡ Exploit ✅ Patch | Jan 12, 2026 |
| CVE-2025-69271 | High | 7.5 |
Insufficiently Protected Credentials vulnerability in Broadcom DX NetOps Spectrum on Windows, Linux allows Sniffing Atta…
|
✅ Patch | Jan 12, 2026 |
| CVE-2025-69272 | High | 7.5 |
Cleartext Transmission of Sensitive Information vulnerability in Broadcom DX NetOps Spectrum on Windows, Linux allows Sn…
|
✅ Patch | Jan 12, 2026 |
| CVE-2025-69273 | High | 7.5 |
Improper Authentication vulnerability in Broadcom DX NetOps Spectrum on Windows, Linux allows Authentication Bypass.This…
|
✅ Patch | Jan 12, 2026 |
| CVE-2026-22200 | High | 7.5 |
Enhancesoft osTicket versions 1.18.x prior to 1.18.3 and 1.17.x prior to 1.17.7 contain an arbitrary file read vulnerabi…
|
⚡ Exploit ✅ Patch | Jan 12, 2026 |
| CVE-2026-22776 | High | 7.5 |
cpp-httplib is a C++11 single-file header-only cross platform HTTP/HTTPS library. Prior to version 0.30.1, a Denial of S…
|
⚡ Exploit ✅ Patch | Jan 12, 2026 |
| CVE-2026-0836 | High | 8.8 |
A vulnerability was determined in UTT 进取 520W 1.7.7-180627. The impacted element is the function strcpy of the file /gof…
|
⚡ Exploit ✅ Patch | Jan 11, 2026 |
| CVE-2026-0837 | High | 8.8 |
A vulnerability was identified in UTT 进取 520W 1.7.7-180627. This affects the function strcpy of the file /goform/formFir…
|
⚡ Exploit ✅ Patch | Jan 11, 2026 |
| CVE-2026-0838 | High | 8.8 |
A security flaw has been discovered in UTT 进取 520W 1.7.7-180627. This impacts the function strcpy of the file /goform/Co…
|
⚡ Exploit ✅ Patch | Jan 11, 2026 |