🛡️ CVE Vulnerability Database

CVE vulnerabilities with bilingual AI analysis tailored for Saudi Arabia

CVE ID	Title / Description	Severity	CVSS	Status	Published
CVE-2026-34257	Due to an Open Redirect vulnerability in SAP NetWeaver Application Server ABAP, an unauthenticated a…	MEDIUM	6.1	—	Apr 14, 2026
CVE-2026-33822	Out-of-bounds read in Microsoft Office Word allows an unauthorized attacker to disclose information …	MEDIUM	6.1	—	Apr 14, 2026
CVE-2026-33103	Improper access control in Microsoft Dynamics 365 (on-premises) allows an authorized attacker to dis…	MEDIUM	5.5	—	Apr 14, 2026
CVE-2026-4059	The ShopLentor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the woolentor_q…	MEDIUM	6.4	—	Apr 14, 2026
CVE-2026-32226	Concurrent execution using shared resource with improper synchronization ('race condition') in .NET …	MEDIUM	5.9	—	Apr 14, 2026
CVE-2026-32223	Heap-based buffer overflow in Windows USB Print Driver allows an unauthorized attacker to elevate pr…	MEDIUM	6.8	—	Apr 14, 2026
CVE-2026-32218	Insertion of sensitive information into log file in Windows Kernel allows an authorized attacker to …	MEDIUM	5.5	—	Apr 14, 2026
CVE-2026-32217	Insertion of sensitive information into log file in Windows Kernel allows an authorized attacker to …	MEDIUM	5.5	—	Apr 14, 2026
CVE-2026-32216	Null pointer dereference in Windows Redirected Drive Buffering allows an authorized attacker to deny…	MEDIUM	5.5	—	Apr 14, 2026
CVE-2026-37980	A flaw was found in Keycloak, specifically in the organization selection login page. A remote attack…	MEDIUM	6.9	AI	Apr 14, 2026
CVE-2026-32215	Insertion of sensitive information into log file in Windows Kernel allows an authorized attacker to …	MEDIUM	5.5	—	Apr 14, 2026
CVE-2026-32214	Improper access control in Universal Plug and Play (upnp.dll) allows an authorized attacker to discl…	MEDIUM	5.5	—	Apr 14, 2026
CVE-2026-32212	Improper link resolution before file access ('link following') in Universal Plug and Play (upnp.dll)…	MEDIUM	5.5	—	Apr 14, 2026
CVE-2026-32201	Improper input validation in Microsoft Office SharePoint allows an unauthorized attacker to perform …	MEDIUM	6.5	KEV	Apr 14, 2026
CVE-2026-32196	Improper neutralization of input during web page generation ('cross-site scripting') in Windows Admi…	MEDIUM	6.1	—	Apr 14, 2026
CVE-2026-32181	Improper privilege management in Microsoft Windows allows an authorized attacker to deny service loc…	MEDIUM	5.5	—	Apr 14, 2026
CVE-2026-32176	Improper neutralization of special elements used in an sql command ('sql injection') in SQL Server a…	MEDIUM	6.7	—	Apr 14, 2026
CVE-2026-32167	Improper neutralization of special elements used in an sql command ('sql injection') in SQL Server a…	MEDIUM	6.7	—	Apr 14, 2026
CVE-2026-32151	Exposure of sensitive information to an unauthorized actor in Windows Shell allows an authorized att…	MEDIUM	6.5	—	Apr 14, 2026
CVE-2026-32088	Concurrent execution using shared resource with improper synchronization ('race condition') in Windo…	MEDIUM	6.1	—	Apr 14, 2026
CVE-2026-32085	Exposure of sensitive information to an unauthorized actor in Windows Remote Procedure Call allows a…	MEDIUM	5.5	—	Apr 14, 2026
CVE-2026-32084	Exposure of sensitive information to an unauthorized actor in Windows File Explorer allows an author…	MEDIUM	5.5	—	Apr 14, 2026
CVE-2026-32081	Exposure of sensitive information to an unauthorized actor in Windows File Explorer allows an author…	MEDIUM	5.5	—	Apr 14, 2026
CVE-2026-32079	Exposure of sensitive information to an unauthorized actor in Windows File Explorer allows an author…	MEDIUM	5.5	—	Apr 14, 2026
CVE-2026-32072	Improper authentication in Windows Active Directory allows an unauthorized attacker to perform spoof…	MEDIUM	6.2	—	Apr 14, 2026

← 1…5 6 7 8 9…43 →

🤖 AI Analysis Active

AI analysis includes: Arabic description, Saudi impact assessment, remediation steps, compliance mapping (NCA ECC, SAMA CSF, ISO 27001) and MITRE ATT&CK techniques.

1,706 CVEs analyzed

🔴 Recent Critical CVEs

9.8

9.8

9.8