🛡️ CVE Vulnerability Database

CVE vulnerabilities with bilingual AI analysis tailored for Saudi Arabia

CVE ID	Title / Description	Severity	CVSS	Status	Published
CVE-2026-3909	Google Skia — CVE-2026-3909 Google Skia contains an out-of-bounds… Google Skia — CVE-2026-3909 Google Skia contains an out-of-bounds write vulnerability that could all…	CRITICAL	9.8	KEV AI	Mar 13, 2026
CVE-2025-68613	n8n Workflow Expression Evaluation Remote Code Execution (CVE-202… n8n n8n — CVE-2025-68613 n8n contains an improper control of dynamically managed code resources vuln…	CRITICAL	9.8	KEV AI	Mar 11, 2026
CVE-2026-28495	GetSimple CMS is a content management system. The massiveAdmin pl… GetSimple CMS is a content management system. The massiveAdmin plugin (v6.0.3) bundled with GetSimpl…	CRITICAL	9.6	⚡ ✅ AI	Mar 10, 2026
CVE-2025-26399	SolarWinds Web Help Desk — CVE-2025-26399 SolarWinds Web Help Des… SolarWinds Web Help Desk — CVE-2025-26399 SolarWinds Web Help Desk contain a deserialization of untr…	CRITICAL	9.8	KEV AI	Mar 9, 2026
CVE-2021-22054	Omnissa Workspace One UEM — CVE-2021-22054 Omnissa Workspace One … Omnissa Workspace One UEM — CVE-2021-22054 Omnissa Workspace One UEM formerly known as VMware Worksp…	CRITICAL	9.8	KEV AI	Mar 9, 2026
CVE-2023-43000	Apple Multiple products Use-After-Free Vulnerability — Apple macO… Apple Multiple products Use-After-Free Vulnerability — Apple macOS, iOS, iPadOS, and Safari 16.6 con…	CRITICAL	9.0	⚡ ✅ KEV AI	Mar 5, 2026
CVE-2023-41974	Apple iOS and iPadOS Use-After-Free Vulnerability — Apple iOS and… Apple iOS and iPadOS Use-After-Free Vulnerability — Apple iOS and iPadOS contain a use-after-free vu…	CRITICAL	9.0	⚡ ✅ KEV AI	Mar 5, 2026
CVE-2021-30952	Apple Multiple Products Integer Overflow or Wraparound Vulnerabil… Apple Multiple Products Integer Overflow or Wraparound Vulnerability — Apple tvOS, macOS, Safari, iP…	CRITICAL	9.0	⚡ ✅ KEV AI	Mar 5, 2026
CVE-2021-22681	Rockwell Multiple Products Insufficient Protected Credentials Vul… Rockwell Multiple Products Insufficient Protected Credentials Vulnerability — Multiple Rockwell prod…	CRITICAL	9.0	⚡ ✅ KEV AI	Mar 5, 2026
CVE-2017-7921	Hikvision Multiple Products Improper Authentication Vulnerability… Hikvision Multiple Products Improper Authentication Vulnerability — Multiple Hikvision products cont…	CRITICAL	9.0	⚡ ✅ KEV AI	Mar 5, 2026
CVE-2026-3301	Critical OS Command Injection Vulnerability in Totolink N300RH Ro… A security flaw has been discovered in Totolink N300RH 6.1c.1353_B20190305. Affected by this vulnera…	CRITICAL	9.8	⚡ ✅ AI	Feb 27, 2026
CVE-2026-28370	Critical Code Injection Vulnerability in OpenStack Vitrage Query … In the query parser in OpenStack Vitrage before 12.0.1, 13.0.0, 14.0.0, and 15.0.0, a user allowed t…	CRITICAL	9.1	⚡ ✅ AI	Feb 27, 2026
CVE-2026-28363	CVE-2026-28363: Command Injection via GNU Long-Option Abbreviatio… In OpenClaw before 2026.2.23, tools.exec.safeBins validation for sort could be bypassed via GNU long…	CRITICAL	9.9	✅ AI	Feb 27, 2026
CVE-2026-28268	CVE-2026-28268: Persistent Password Reset Token Reuse Vulnerabili… Vikunja is an open-source self-hosted task management platform. Versions prior to 2.1.0 have a busin…	CRITICAL	9.8	✅ AI	Feb 27, 2026
CVE-2026-27755	Critical Session Forgery Vulnerability in SODOLA SL902-SWTGW124AS… SODOLA SL902-SWTGW124AS firmware versions through 200.1.20 contain a weak session identifier generat…	CRITICAL	9.8	✅ AI	Feb 27, 2026
CVE-2026-27751	Critical Default Credentials Vulnerability in SODOLA SL902-SWTGW1… SODOLA SL902-SWTGW124AS firmware versions through 200.1.20 contain a default credentials vulnerabili…	CRITICAL	9.8	✅ AI	Feb 27, 2026
CVE-2026-2750	Critical Improper Input Validation Vulnerability in Centreon Open… Improper Input Validation vulnerability in Centreon Centreon Open Tickets on Central Server on Linux…	CRITICAL	9.1	✅ AI	Feb 27, 2026
CVE-2026-2749	Critical Vulnerability in Centreon Open Tickets Module Affecting … Vulnerability in Centreon Centreon Open Tickets on Central Server on Linux (Centroen Open Ticket mod…	CRITICAL	9.9	✅ AI	Feb 27, 2026
CVE-2026-24352	CVE-2026-24352: Critical Session Fixation Vulnerability in PluXml… PluXml CMS allows a user's session identifier to be set before authentication. The value of this ses…	CRITICAL	9.8	✅ AI	Feb 27, 2026
CVE-2026-2251	Critical Path Traversal Vulnerability in Xerox FreeFlow Core Lead… Improper limitation of a pathname to a restricted directory (Path Traversal) vulnerability in Xerox …	CRITICAL	9.8	✅ AI	Feb 27, 2026
CVE-2025-12981	Critical Privilege Escalation Vulnerability in Listee WordPress T… The Listee theme for WordPress is vulnerable to privilege escalation in all versions up to, and incl…	CRITICAL	9.8	✅ AI	Feb 27, 2026
CVE-2025-11252	Critical SQL Injection Vulnerability in Windesk.Fm Facility Manag… Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability i…	CRITICAL	9.8	✅ AI	Feb 27, 2026
CVE-2025-11251	Critical SQL Injection Vulnerability in Dayneks E-Commerce Platfo… Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability i…	CRITICAL	9.8	✅ AI	Feb 27, 2026
CVE-2026-28215	hoppscotch is an open source API development ecosystem. Prior to … hoppscotch is an open source API development ecosystem. Prior to version 2026.2.0, an unauthenticate…	CRITICAL	9.1	⚡ ✅ AI	Feb 26, 2026
CVE-2026-28213	EverShop is a TypeScript-first eCommerce platform. Versions prior… EverShop is a TypeScript-first eCommerce platform. Versions prior to 2.1.1 have a vulnerability in t…	CRITICAL	9.8	✅ AI	Feb 26, 2026

← 1 2 3 4 5…64 →

🤖 AI Analysis Active

AI analysis includes: Arabic description, Saudi impact assessment, remediation steps, compliance mapping (NCA ECC, SAMA CSF, ISO 27001) and MITRE ATT&CK techniques.

1,706 CVEs analyzed

🔴 Recent Critical CVEs

9.8

9.8

9.8