🛡️ CVE Vulnerability Database

CVE vulnerabilities with bilingual AI analysis tailored for Saudi Arabia

CVE ID	Title / Description	Severity	CVSS	Status	Published
CVE-2026-33797	An Improper Input Validation vulnerability in Juniper Networks Junos OS and Junos OS Evolved allows …	HIGH	7.4	—	Apr 9, 2026
CVE-2026-34512	OpenClaw before 2026.3.25 contains an improper access control vulnerability in the HTTP /sessions/:s…	HIGH	8.1	—	Apr 9, 2026
CVE-2026-35625	OpenClaw before 2026.3.25 contains a privilege escalation vulnerability where silent local shared-au…	HIGH	7.8	—	Apr 9, 2026
CVE-2026-35629	OpenClaw before 2026.3.25 contains a server-side request forgery vulnerability in multiple channel e…	HIGH	7.4	—	Apr 9, 2026
CVE-2026-35632	OpenClaw through 2026.2.22 contains a symlink traversal vulnerability in agents.create and agents.up…	HIGH	7.1	⚡	Apr 9, 2026
CVE-2026-35637	OpenClaw before 2026.3.22 performs cite expansion before completing channel and DM authorization che…	HIGH	7.3	—	Apr 9, 2026
CVE-2026-35638	OpenClaw before 2026.3.22 contains a privilege escalation vulnerability in the Control UI that allow…	HIGH	8.8	—	Apr 9, 2026
CVE-2026-35639	OpenClaw before 2026.3.22 contains a privilege escalation vulnerability in the device.pair.approve m…	HIGH	8.8	—	Apr 9, 2026
CVE-2026-35645	OpenClaw before 2026.3.25 contains a privilege escalation vulnerability in the gateway plugin subage…	HIGH	8.1	—	Apr 9, 2026
CVE-2026-39911	Hashgraph Guardian through version 3.5.0 contains an unsandboxed JavaScript execution vulnerability …	HIGH	8.8	—	Apr 9, 2026
CVE-2026-39942	Directus is a real-time API and App dashboard for managing SQL database content. Prior to 11.17.0, t…	HIGH	8.5	—	Apr 9, 2026
CVE-2026-30814	A stack-based buffer overflow in the tmpServer module of TP-Link Archer AX53 v1.0 allows an authenti…	HIGH	8.0	—	Apr 8, 2026
CVE-2026-30815	An OS command injection vulnerability in the OpenVPN module of TP-Link Archer AX53 v1.0 allows an au…	HIGH	8.0	—	Apr 8, 2026
CVE-2026-30818	An OS command injection vulnerability in the dnsmasq module of TP-Link Archer AX53 v1.0 allows an au…	HIGH	8.0	—	Apr 8, 2026
CVE-2026-3243	The Advanced Members for ACF plugin for WordPress is vulnerable to arbitrary file deletion due to in…	HIGH	8.8	—	Apr 8, 2026
CVE-2026-32589	A flaw was found in Red Hat Quay's container image upload process. An authenticated user with push a…	HIGH	7.1	—	Apr 8, 2026
CVE-2026-32590	A flaw was found in Red Hat Quay's handling of resumable container image layer uploads. The upload p…	HIGH	7.1	—	Apr 8, 2026
CVE-2026-3357	IBM Langflow Desktop 1.6.0 through 1.8.2 Langflow could allow an authenticated user to execute arbit…	HIGH	8.8	—	Apr 8, 2026
CVE-2026-3396	WCAPF – WooCommerce Ajax Product Filter plugin is vulnerable to time-based SQL Injection via the 'po…	HIGH	7.5	—	Apr 8, 2026
CVE-2026-3499	The Product Feed PRO for WooCommerce by AdTribes – Product Feeds for WooCommerce plugin for WordPres…	HIGH	8.8	—	Apr 8, 2026
CVE-2026-35525	LiquidJS is a Shopify / GitHub Pages compatible template engine in pure JavaScript. Prior to 10.25.3…	HIGH	7.5	⚡	Apr 8, 2026
CVE-2026-39883	OpenTelemetry-Go is the Go implementation of OpenTelemetry. From 1.15.0 to 1.42.0, the fix for CVE-2…	HIGH	7.0	⚡	Apr 8, 2026
CVE-2026-40024	The Sleuth Kit through 4.14.0 contains a path traversal vulnerability in tsk_recover that allows an …	HIGH	7.1	—	Apr 8, 2026
CVE-2026-40027	ALEAPP (Android Logs Events And Protobuf Parser) through 3.4.0 contains a path traversal vulnerabili…	HIGH	7.3	—	Apr 8, 2026
CVE-2026-40029	parseusbs before 1.9 contains an OS command injection vulnerability in parseUSBs.py where LNK file p…	HIGH	7.8	—	Apr 8, 2026

← 1…11 12 13 14 15…84 →

🤖 AI Analysis Active

AI analysis includes: Arabic description, Saudi impact assessment, remediation steps, compliance mapping (NCA ECC, SAMA CSF, ISO 27001) and MITRE ATT&CK techniques.

1,774 CVEs analyzed

🔴 Recent Critical CVEs

9.8

9.8

9.8