🛡️ CVE Vulnerability Database

CVE vulnerabilities with bilingual AI analysis tailored for Saudi Arabia

CVE ID	Title / Description	Severity	CVSS	Status	Published
CVE-2026-27285	InDesign Desktop versions 20.5.2, 21.2 and earlier are affected by a Heap-based Buffer Overflow vuln…	MEDIUM	5.5	—	Apr 14, 2026
CVE-2026-27258	DNG SDK versions 1.7.1 2502 and earlier are affected by an out-of-bounds write vulnerability that co…	MEDIUM	5.5	—	Apr 14, 2026
CVE-2026-27222	Bridge versions 16.0.2, 15.1.4 and earlier are affected by a Divide By Zero vulnerability that could…	MEDIUM	5.5	—	Apr 14, 2026
CVE-2026-26169	Buffer over-read in Windows Kernel Memory allows an authorized attacker to disclose information loca…	MEDIUM	6.1	—	Apr 14, 2026
CVE-2026-26155	Microsoft Local Security Authority Subsystem Service Information Disclosure Vulnerability	MEDIUM	6.5	—	Apr 14, 2026
CVE-2026-2582	The The Germanized for WooCommerce plugin for WordPress is vulnerable to arbitrary shortcode executi…	MEDIUM	6.5	—	Apr 14, 2026
CVE-2026-23670	Untrusted pointer dereference in Windows Virtualization-Based Security (VBS) Enclave allows an autho…	MEDIUM	5.7	—	Apr 14, 2026
CVE-2026-23653	Improper neutralization of special elements used in a command ('command injection') in GitHub Copilo…	MEDIUM	5.7	—	Apr 14, 2026
CVE-2026-21331	Adobe Connect versions 2025.3, 12.10 and earlier are affected by a reflected Cross-Site Scripting (X…	MEDIUM	6.1	—	Apr 14, 2026
CVE-2026-20806	Access of resource using incompatible type ('type confusion') in Windows COM allows an authorized at…	MEDIUM	5.5	—	Apr 14, 2026
CVE-2026-1607	The Surbma \| Booking.com Shortcode plugin for WordPress is vulnerable to Stored Cross-Site Scripting…	MEDIUM	6.4	—	Apr 14, 2026
CVE-2026-0512	Due to a Cross-Site Scripting (XSS) vulnerability in the SAP Supplier Relationship Management (SICF …	MEDIUM	6.1	—	Apr 14, 2026
CVE-2026-0390	Reliance on untrusted inputs in a security decision in Windows Boot Loader allows an authorized atta…	MEDIUM	6.7	—	Apr 14, 2026
CVE-2025-15565	The Nexi XPay plugin for WordPress is vulnerable to unauthorized modification of data due to missing…	MEDIUM	5.3	—	Apr 14, 2026
CVE-2026-34626	Acrobat Reader versions 26.001.21411, 24.001.30360, 24.001.30362 and earlier are affected by an Impr…	MEDIUM	6.3	—	Apr 14, 2026
CVE-2026-34625	Adobe Experience Manager versions 6.5.24, FP11.7 and earlier are affected by a DOM-based Cross-Site …	MEDIUM	5.4	—	Apr 14, 2026
CVE-2026-34624	Adobe Experience Manager versions 6.5.24, FP11.7 and earlier are affected by a DOM-based Cross-Site …	MEDIUM	5.4	—	Apr 14, 2026
CVE-2026-27925	Use after free in Windows Universal Plug and Play (UPnP) Device Host allows an unauthorized attacker…	MEDIUM	6.5	—	Apr 14, 2026
CVE-2026-27930	Out-of-bounds read in Windows GDI allows an unauthorized attacker to disclose information locally.	MEDIUM	5.5	—	Apr 14, 2026
CVE-2026-27931	Out-of-bounds read in Windows GDI allows an unauthorized attacker to disclose information locally.	MEDIUM	5.5	—	Apr 14, 2026
CVE-2026-34623	Adobe Experience Manager versions 6.5.24, FP11.7 and earlier are affected by a DOM-based Cross-Site …	MEDIUM	5.4	—	Apr 14, 2026
CVE-2026-34614	Adobe Connect versions 2025.3, 12.10 and earlier are affected by a reflected Cross-Site Scripting (X…	MEDIUM	6.1	—	Apr 14, 2026
CVE-2026-34264	During authorization checks in SAP Human Capital Management for SAP S/4HANA, the system returns spec…	MEDIUM	6.5	—	Apr 14, 2026
CVE-2026-34262	Information Disclosure Vulnerability in SAP HANA Cockpit and HANA Database Explorer	MEDIUM	5.0	—	Apr 14, 2026
CVE-2026-34261	Due to a missing authorization check in SAP Business Analytics and SAP Content Management, an authen…	MEDIUM	6.5	—	Apr 14, 2026

← 1…4 5 6 7 8…43 →

🤖 AI Analysis Active

AI analysis includes: Arabic description, Saudi impact assessment, remediation steps, compliance mapping (NCA ECC, SAMA CSF, ISO 27001) and MITRE ATT&CK techniques.

1,706 CVEs analyzed

🔴 Recent Critical CVEs

9.8

9.8

9.8